IPv6 TRANSITION 
IPv6 TRAINING 
TACLANE/FASTLANE 
INFRASTRUCTURE 
ACCREDITATION
SECURITY AUDIT
Benefits 
Tools

CSA Tools The WCI CSA team approaches each site with the understanding that each network is unique and thus has unique requirements. After a review of the site’s architecture and mission the WCI CSA team will use the most appropriate tools to collect and analyze system and network vulnerabilities. Some of the tools used are: ISS and Nessus NMAP Password Crackers Custom system scripts for Windows (98, ME, 2000, XP, 2003) Ad-hoc Testing Custom system scripts for Unix (AIX, Solaris, IRIX, HPUX, and Linux variants)

CSA Safeguards

Scan results and script issues are verified through vulnerability testing, analysis of OS versions and patch levels, and thorough checks of OS and common network application configurations. The assessment scripts are information gathering tools only, and make no changes to assessed systems other than writing output results (these can be redirected if necessary). All scripts and scan configurations are thoroughly tested prior to deployment on a CSA.

WCI CSA team scanning systems are accredited and re-loaded clean for each assessment. At the site’s discretion, scanning system results can be purged prior to the CSA team’s departure. If arrangements are made in advance, the hard drives can be wiped and left with the site.