Presentation is loading. Please wait.

Presentation is loading. Please wait.

Using Cornell’s Spider to scan for sensitive information January 27, 2009 Steve Lovaas, ACNS Colorado State University.

Published byThomasina Patterson Modified over 9 years ago

Similar presentations

Presentation on theme: "Using Cornell’s Spider to scan for sensitive information January 27, 2009 Steve Lovaas, ACNS Colorado State University."— Presentation transcript:

1 Using Cornell’s Spider to scan for sensitive information January 27, 2009 Steve Lovaas, ACNS Colorado State University

2 Spider, the Tool What is it Where to get it Where to use it Which version Installing Changing defaults Running Logging Remediation Reporting Demo Q&A

3 What is Spider (a refresher moment) Developed by Wyman Miles  Cornell University Open source, CSU collaboration Searches directories, opening files  Reads them if possible Regular-expression matching

4 Where to get it http://ssnscan.colostate.edu Supporting documents, config files Local download of application Link to online documentation Reporting template, exception request

5 Where to use it Easiest to configure on one machine, scan across the network.NET 2.0 or greater for Windows versions Mac and Linux versions available  …but better ones are coming soon Scan from a Windows machine

6 Which version Spider 2.9, 3, or 2008 3 is stable and recommended 2008 has some very useful features, still beta

7 Installing.NET 2.0 (or greater) first Zipped installer Spider 3 installs EXE Spider 2008 installs MSI Final Spider 2008 will include web config updater

8 Changing defaults Spider 3 scans everything Spider 2008 scans a list of file types Can exclude directories to improve performance (and maybe miss) Leave default CC# regexes CSU SSN regex (based on CMU’s).reg file to set config

9 Running Can take a lot of resources Spider 2008 can recover from interruption (with 3, you’ll have to start over)

10 Logging Spider 3  local log file (password if includes the hits)  syslog/Windows Event Log Spider 2008  encrypted State Database, exportable logs  syslog/Windows Event Log Protect your logs!

11 Remediation Spider 3  a manual event Spider 2008  redact (XXXX) SSNs/CC#s in files  right-click-and-delete from the log screen Re-scan after user remediation

12 Reporting Spider 3:  a manual event (or some custom scripts) Spider 2008  log export tool ACNS doesn’t want the logs, but you might want to burn them to disk for archive Summarize results on the report template (Excel)

13 Demo of each version…

14 Questions? Steven.Lovaas@ColoState.EDU

Download ppt "Using Cornell’s Spider to scan for sensitive information January 27, 2009 Steve Lovaas, ACNS Colorado State University."

Similar presentations

Discovering SQL all rights reserved (c) 2010 agilitator.com INSTALLING MS SQL Server 2008 R2 Express Edition.

Discovering SQL all rights reserved (c) 2010 agilitator.com INSTALLING MS SQL Server 2008 R2 Express Edition.
Getting Set-up with Hosting and WordPress Gregory Young Alternative Hosting

Getting Set-up with Hosting and WordPress Gregory Young Alternative Hosting
Sensitive Information Sweep

Sensitive Information Sweep
Desktop Training & Quick Start Guide

Desktop Training & Quick Start Guide
Guide to MCSE 70-290, Enhanced 1 Activity 14-1: Browsing Security Templates Objective: To become familiar with built-in security templates Start  Run.

Guide to MCSE , Enhanced 1 Activity 14-1: Browsing Security Templates Objective: To become familiar with built-in security templates Start  Run.
Campus Meeting on CSUID Implementation – SSN Purge Pat Burns and Steve Lovaas ACNS July 28, 2006.

Campus Meeting on CSUID Implementation – SSN Purge Pat Burns and Steve Lovaas ACNS July 28, 2006.
Security Issues Steve Lovaas, ACNS IAC, 22 April 2008 Colorado State University1.

Security Issues Steve Lovaas, ACNS IAC, 22 April 2008 Colorado State University1.
Kerio Connect 7.1 More Than Just a Mail Server

Kerio Connect 7.1 More Than Just a Mail Server
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
Introduction to Android Studio

Introduction to Android Studio
PHP Scripting Language. Introduction “PHP” is an acronym for “PHP: Hypertext Preprocessor.” It is an interpreted, server-side scripting language. Originally.

PHP Scripting Language. Introduction “PHP” is an acronym for “PHP: Hypertext Preprocessor.” It is an interpreted, server-side scripting language. Originally.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
STORAGE SOLUTIONS Research Data Management. Keeping your data just on your working machine, be it lap top or desktop, is the perfect way to loose your.

STORAGE SOLUTIONS Research Data Management. Keeping your data just on your working machine, be it lap top or desktop, is the perfect way to loose your.
Migrating to EPiServer CMS 5 Johan Björnfot -

Migrating to EPiServer CMS 5 Johan Björnfot -
Julie McEnery1 Installing the ScienceTools The release manager automatically compiles each release of the Science Tools, it creates a set of wrapper scripts.

Julie McEnery1 Installing the ScienceTools The release manager automatically compiles each release of the Science Tools, it creates a set of wrapper scripts.
Security SIG August 19, 2010 Justin C. Klein Keane

Security SIG August 19, 2010 Justin C. Klein Keane
Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:

Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:
The basics of the Online Portal

The basics of the Online Portal
MANAGING PII WITH IDENTITY FINDER Paul Hanson IET-Data Center and Client Services University of California, Davis.

MANAGING PII WITH IDENTITY FINDER Paul Hanson IET-Data Center and Client Services University of California, Davis.
SmartLog X 3 TEAM Basic SmartLog X 3 TEAM Basic DescoEMIT.com USER STATUS USER EDIT E-MAIL TEST LOG ADMIN TEST MACHINE SCHEDULE INSTALL System Requirements:

SmartLog X 3 TEAM Basic SmartLog X 3 TEAM Basic DescoEMIT.com USER STATUS USER EDIT TEST LOG ADMIN TEST MACHINE SCHEDULE INSTALL System Requirements:

Similar presentations

Ads by Google