Services

Forensic Analysis

The forensic analysis of computer systems has the objective of finding what happened during a security incident. It seeks giving an answer to the questions that usually surround every incident:

  • Which is the problem’s origin
  • Which information actives were affected and to what extent
  • When did the incident happen
  • Where did it origin and towards which actives was it directed
  • Etcetera

From esCERT-UPC we participate in both private forensic analysis and in those related to juridical processes, following at every moment a strict forensic methodology.

Our forensic analysis services are focused to those organizations that have suffered attacks, intrusions and/or information robbery, as to the wronged that require an investigation process where digital data is involved: emails, web pages, etcetera.

Using the most advanced techniques allow the esCERT’s security team to help to recover lost information over practically any kind of device and operative system.

Contact us

Vulnerability management

The platform ALTAIR-S (ALTAIR-SIGVI), developed by us, has the main objective to keep the System Administrators updated about the new vulnerabilities found on operative systems, software, devices, etcetera with the intention to help them prevent possible intrusions in their informatics systems.

All the notices published in ALTAIR-S allow to know in depth each vulnerability, the impact that can have an exploit of it and the procedures to be followed in order to update all the affected systems.

Through ALTAIR-S personalized Control Panel, System Administrators will be able to:

  • Manage their servers and the services/products related
  • Check and validate the vulnerability alerts that could affect them
  • Send specific audits to their servers
  • Generate reports and statistics about the evolution of vulnerabilities and alerts

Contact us

 

Courses

For over 15 years, our professionals have helped in the education on the security field to all kind of entities: CCN-CERT, Mossos d’Esquadra, Generalitat de Catalunya, etcetera.
Within the collaboration contract with Universitat Politècnica de Catalunya (UPC), from esCERT-UPC we periodically impart different courses of security addressed to all the university community.

In the same way, from the perspective of divulgating all the related computer security aspects, from esCERT-UPC we also offer personalized formation courses to companies and external technicians.

Through our formation courses, with syllabus and specific documentation adapted to the client needs, it is possible to prepare for different certificate graduations as CSTX, CISA o CISM as for the professional consultants formation.

Some of the courses usually imparted are:

Contact us

Audits

From esCERT-UPC we offer a personalized service of audits oriented to web environments with the goal of recommending mechanisms to improve the security of the company’s information systems.

This kind of audits are necessary to avoid possible intrusions into the systems through their software vulnerabilities.

The Web Audits service includes:

  • The analysis of web applications in order to detect vulnerabilities that affect the company’s security
  • The analysis of font code with the purpose of detecting design errors that could lead to application vulnerabilities

The tests that applications go through, compatible with OWASP methodology, are enumerated right below:

  • Search of information, examination of the platform and the application
  • Revision of the platform configuration
  • Revision of the authentication processes
  • Revision of the sessions management (and possible identity thefts)
  • Revision of the authorization processes
  • Revision of the business logic
  • Revision of the input validation errors

Contact us

Security implementation and management

The security implementation and management projects require a good methodology in order to succeed. To do so, it is necessary to analyze the specific client needs and then implement those politics more appropriately for their environment.

During the project realization, from esCERT-UPC we analyze and contemplate the possible inclusion of the following components:

  • High availability and Load balancing solutions
  • Firewalls and VPN
  • Pattern based NIDS and HIDS systems
  • Anomaly detection systems
  • Monitoring systems
  • LOG correlation systems
  • Automatic audit systems

Contact us

Incident response

The UPC incident response team (esCERT-UPC) help schools and departments that have detected a possible incident in their networks.

To do so, we provide the necessary contact info to report, identify and analyze the facts, suggesting solutions and strategies to solve the problem.

If you think that your school or department has been involved in a security incident or if you have detected some kind of security problem in your systems and need the help of esCERT-UPC team, send us all the information to: cert@escert.upc.edu.

Contact us

Compliance

The quality of information systems is a fundamental factor to succeed in projects of the TIC environment.

From esCERT-UPC we offer a set of services oriented to the compliance of this information systems with the current law::

  • Risk analysis (MAGERIT and ISO 27005 methodologies)
  • Audits in observance of the Organic Law 15/1999 on the Protection of Personal Data (LOPD)
  • LSSI audits
  • ENS and ISO 27001 audits

Contact us

Services to UPC community

 

esCERT helps and advises in security and incident response in IT networks. The main goals of our organization are:

  • Inform about security vulnerabilities and threats.
  • Disclose and offer to the community information that can be used to prevent and resolve security incidents.
  • Realize investigations related with computer security.
  • Educate the community, in general, about security issues.

esCERT offers the UPC a service of incident response based on preventive and reactive measures.

The Preventive Support service offered by esCERT to UPC has the aim to help system administrators of the UPC to improve the security of their systems. All preventive measures have the objective to inform administrators about potential or real vulnerabilities of their systems and the appropriate solutions for their prevention.

The preventive measures that we offer are:

  • Consulting: esCERT offers a technical consulting service through the email cert@escert.upc.edu.
  • Altair-Sigvi service: The Altair-Sigvi service informs about the latest vulnerabilities and threats, with the aim of alerting the administrators about the latest updates. More information about Altair-sigvi.
  • Audits: The information systems audits can help to detect vulnerabilities, with the objective of repairing them as soon as possible to minimize the threats that the organization is exposed to. More information about audits.
  • Training: An adequate training of the administrators can help to have a better knowledge about digital security, so any implantation/integration of the information systems can be done focusing specially on the weakest points. In the UPC intranet you will be able to access to the training program of the current year, where you will see the different courses that esCERT will hold through the year.

 

The The Reactive Support service offered by esCERT to the UPC has the goal of giving support to the system administrators of the UPC on the communication, management and resolution of computer security incidents, and of providing informs and statistics, and acting as the Coordinator Center in emergency situations.

The reactive measures are the following:

  • Recomendations: In case you have been victim of an attack, in esCERT we are willing to offer guides and recommendations suitable for your case to be able to manage the incident.
  • Forensic Analysis: We offer the possibility of realizing forensic analysis on your systems to detect the origin of the problem or even the organism responsible of the incident. More information about forensic analysis.

 

Contact us

 

 

esCERT is part of

Is member of