Muna ci gaba da gabatar muku da duniyar da ke yaƙi da phishing, koyon kayan aikin injiniyan zamantakewa kuma ba ta manta da horar da ma'aikatanta. Yau bakon mu shine samfurin Phishman. Wannan shine ɗayan abokan haɗin gwiwar TS Solution, yana ba da tsarin sarrafa kansa don gwaji da horar da ma'aikata. A taƙaice game da manufarsa:
-
Gano buƙatun horo na takamaiman ma'aikata.
-
Kwasa-kwasan da ake amfani da shi da na ka'ida don ma'aikata ta hanyar tashar horo.
-
M tsarin sarrafa kansa don tsarin aiki.
Gabatarwar Samfur
M Tun daga shekarar 2016, ya fara kera manhajojin da ke da alaka da tsarin gwaji da horar da ma'aikatan manyan kamfanoni a fannin tsaro na intanet. Daga cikin abokan ciniki akwai wakilai daban-daban na masana'antu: kudi, inshora, ciniki, albarkatun kasa da manyan masana'antu - daga M.Video zuwa Rosatom.
Shawarwari mafita
Phishman yana aiki tare da kamfanoni daban-daban (daga ƙananan kasuwanci zuwa manyan kamfanoni), da farko ya isa ya sami ma'aikata 10. Bari mu yi la'akari da manufar farashi da lasisi:
-
Don ƙananan kasuwancin:
A) - sigar samfurin daga ma'aikata 10 zuwa 249 tare da farashin farawa don lasisi daga 875 rubles. Ya ƙunshi manyan kayayyaki: tarin bayanai (aikin gwajin saƙon saƙon saƙon saƙon saƙon saƙon saƙon saƙon saƙon saƙo), horarwa (Darussa na asali 3 akan tsaro na bayanai), sarrafa kansa (tsarin yanayin gwaji na gabaɗaya).
B) - sigar samfurin daga 10 zuwa 999 ma'aikata tare da farashin farawa don lasisi daga 1120 rubles. Ba kamar nau'in Lite ba, yana da ikon yin aiki tare da uwar garken AD na kamfani; tsarin horarwa ya ƙunshi darussa 5.
-
Don manyan kasuwancin:
A) - a cikin wannan bayani ba a iyakance adadin ma'aikata ba; yana ba da cikakkiyar tsari don wayar da kan ma'aikata a fagen tsaro na bayanai ga kamfanoni na kowane girman tare da ikon daidaita kwasa-kwasan da bukatun abokin ciniki da kasuwanci. Ana aiki tare tare da AD, SIEM, tsarin DLP don tattara bayanai game da ma'aikata da gano masu amfani waɗanda ke buƙatar horo. Akwai goyan baya don haɗin kai tare da tsarin koyo na nesa (DLS), biyan kuɗin da kansa ya ƙunshi darussan IS guda 7, na ci gaba 4 da na caca 3. Zabi mai ban sha'awa don harin horo ta amfani da faifan USB (katunan filasha) kuma ana tallafawa.
B) - sigar da aka sabunta ta ƙunshi duk zaɓuɓɓukan Shiga, yana yiwuwa a haɓaka masu haɗin kai da rahotanni (tare da taimakon injiniyoyin Phishman).
Don haka, ana iya ƙera samfur ɗin cikin sassauƙa don dacewa da ayyukan takamaiman kasuwanci kuma a haɗa shi cikin tsarin horarwar tsaro na bayanai.
Sanin tsarin
Don rubuta wannan labarin, mun ƙaddamar da shimfidawa tare da halaye masu zuwa:
-
Ubuntu Server daga sigar 16.04.
-
4 GB RAM, 50 GB na sararin diski, processor tare da saurin agogo na 1 GHz ko sama.
-
Sabar Windows tare da ayyukan DNS, AD, MAIL.
Gabaɗaya, saitin daidai ne kuma baya buƙatar albarkatu masu yawa, musamman la'akari da cewa, a matsayin mai mulkin, kun riga kuna da uwar garken AD. Bayan turawa, za a shigar da akwati na Docker, wanda zai tsara damar shiga tashar gudanarwa da koyo ta atomatik.
A ƙasa mai ɓarna akwai zane-zane na cibiyar sadarwa tare da Fishman
Tsarin cibiyar sadarwa na yau da kullun
Na gaba, za mu saba da tsarin dubawa, iyawar gudanarwa da kuma, ba shakka, ayyuka.
Shiga zuwa tashar gudanarwa
Ana amfani da tashar gudanarwar Phishman don sarrafa jerin sassan kamfanoni da ma'aikata. Yana ƙaddamar da hare-hare ta hanyar aika saƙon imel (a matsayin wani ɓangare na horo), kuma ana tattara sakamakon cikin rahotanni. Kuna iya samun dama gare shi ta amfani da adireshin IP ko sunan yankin da kuka ƙayyade lokacin tura tsarin.
Izini akan tashar Phishman
A babban shafi za ku sami damar yin amfani da widgets masu dacewa tare da ƙididdiga akan ma'aikatan ku:
Shafin gida na tashar Pishman
Ƙara ma'aikata don hulɗa
Daga babban menu za ku iya zuwa sashin "Ma'aikata", inda akwai jerin duk ma'aikatan kamfanin da sashen ya rushe (da hannu ko ta AD). Ya ƙunshi kayan aiki don sarrafa bayanan su; yana yiwuwa a gina tsarin daidai da ma'aikata.
Kwamitin Kula da Mai amfaniKatin ƙirƙirar ma'aikata
ZABI: Haɗin kai tare da AD yana samuwa, wanda ke ba ku damar sarrafa sarrafa kan tsarin horar da sabbin ma'aikata da kiyaye ƙididdiga na gabaɗaya.
Kaddamar da horar da ma'aikata
Da zarar ka ƙara bayanai game da ma'aikatan kamfanin, za ka sami damar tura su zuwa kwasa-kwasan horo. Lokacin da zai iya zama da amfani:
-
sabon ma'aikaci;
-
horon da aka tsara;
-
Hanyar gaggawa (akwai ciyarwar bayanai, kuna buƙatar gargadi).
Rikodin yana samuwa ga ma'aikaci ɗaya da dukan sashen.
Samar da kwas na horo
Ina zaɓuɓɓuka:
-
kafa ƙungiyar nazari (haɗa masu amfani);
-
zaɓi na kwas ɗin horo (yawanci dangane da lasisi);
-
samun dama (na dindindin ko na wucin gadi tare da kwanakin da aka nuna).
Muhimmin!
Lokacin yin rajista na farko don kwasa-kwasan, ma'aikaci zai karɓi imel tare da bayanan shiga zuwa Portal Training. Tsarin gayyata samfuri ne, akwai don gyara bisa ga ra'ayin Abokin ciniki.
Misalin wasiƙar gayyata don yin karatu
Idan kun bi hanyar haɗin yanar gizon, za a kai ma'aikaci zuwa tashar horo, inda za a rubuta ci gabansa ta atomatik kuma a nuna shi a cikin kididdigar ma'aikacin Phishman.
Misalin kwas da aka ƙaddamar da mai amfani
Yin aiki tare da tsarin harin
Samfuran suna ba ku damar aika imel ɗin phishing da aka yi niyya tare da mai da hankali kan injiniyan zamantakewa.
Sashe "Samfura"
Samfuran suna cikin rukunoni, misali:
Bincika shafin don ginannen samfura daga nau'i daban-daban
Akwai bayanai game da kowane samfurin da aka shirya, gami da bayani kan tasiri.
Misalin samfuri na Newsletter na Twitter
Hakanan yana da daraja ambaton ikon dacewa don ƙirƙirar samfuran ku: kawai kwafi rubutu daga harafin kuma za a canza shi ta atomatik zuwa lambar HTML.
Lura:
idan ka koma ga abun ciki , to dole ne mu zaɓi samfuri da hannu don shirya harin phishing. Maganin kasuwancin Phishman yana da adadi mai yawa na haɗe-haɗen samfuri, kuma akwai goyan baya ga kayan aikin da suka dace don ƙirƙirar naku. Bugu da ƙari, mai siyarwa yana tallafawa abokan ciniki da gaske kuma yana iya taimakawa wajen ƙara samfuri na musamman, waɗanda muka yi imanin ya fi tasiri sosai.
Gabaɗaya saitin da taimako
A cikin sashin "Saituna", sigogin tsarin Phishman suna canzawa dangane da matakin samun damar mai amfani na yanzu (saboda iyakokin shimfidar wuri, ba su da cikakkiyar samuwa gare mu).
Interface na "Settings" sashe
Bari mu taƙaita zaɓukan sanyi:
-
sigogi na cibiyar sadarwa (adireshin sabar sabar, tashar jiragen ruwa, ɓoyewa, tabbatarwa);
-
zaɓi na tsarin horo (haɗin kai tare da sauran LMS ana tallafawa);
-
gyara ƙaddamarwa da samfuran horo;
-
Baƙaƙen adiresoshin imel (muhimmin dama don keɓance sa hannu a cikin saƙon phishing, misali, ga manajojin kamfani);
-
sarrafa mai amfani (ƙirƙira, gyara asusun shiga);
-
sabuntawa (duba hali da jadawalin).
Masu gudanarwa za su sami sashin "Taimako" mai amfani; yana da damar yin amfani da littafin mai amfani tare da cikakken nazarin aiki tare da Phishman, adireshin sabis na tallafi, da bayani game da matsayin tsarin.
Interface na sashin "Taimako".Bayanin halin tsarin
Kai hari da horo
Bayan nazarin zaɓuɓɓukan asali da saitunan tsarin, za mu gudanar da harin horo; don wannan za mu buɗe sashin "Hare-hare".
Hare-hare iko panel dubawa
A ciki za mu iya fahimtar kanmu sakamakon hare-haren da aka riga aka kaddamar, ƙirƙirar sababbi, da dai sauransu. Bari mu bayyana matakan ƙaddamar da yaƙin neman zaɓe.
Ƙaddamar da hari
1) Bari mu kira sabon harin “leakage data”.
Bari mu ayyana saitunan masu zuwa:
Inda:
Mai aikawa → ana nuna yankin aikawasiku (ta tsohuwa daga mai siyarwa).
Siffofin phishing → ana amfani da su a cikin samfura don ƙoƙarin samun bayanai daga masu amfani, yayin da kawai an rubuta gaskiyar shigarwar, bayanan ba a adana su ba.
Karkatar da kira → ana nuna turawa zuwa shafin bayan mai amfani ya kewaya.
2) A matakin rarraba, ana nuna yanayin yada harin
Inda:
Nau'in harin → yana nuna yadda da kuma lokacin da harin zai faru. (zaɓin ya haɗa da yanayin rarraba mara daidaituwa, da sauransu.)
Lokacin farawa aikawa → an nuna lokacin farawa don aika saƙonni.
3) A matakin "Goals", ana nuna ma'aikata ta sashen ko daidaikun mutane
4) Bayan haka muna nuna alamun harin da muka riga muka taɓa su:
Don haka, don ƙaddamar da harin muna buƙatar:
a) ƙirƙirar tsarin kai hari;
b) nuna yanayin rarraba;
c) zabar manufa;
d) gano samfurin imel na phishing.
Ana duba sakamakon harin
Da farko muna da:
Daga bangaren mai amfani, ana iya ganin sabon saƙon imel:
Idan ka bude:
Idan kun bi hanyar haɗin yanar gizon, za a sa ku shigar da bayanan imel ɗin ku:
A lokaci guda, bari mu kalli kididdigar harin:
Muhimmin!
Manufar Phishman tana bin ƙa'idodin ƙa'ida da ɗabi'a sosai, don haka bayanan da mai amfani ya shigar ba a adana shi a ko'ina, ana yin rikodin gaskiyar ɗigo kawai.
Rahotanni
Duk abin da aka yi a sama ya kamata a goyi bayan ƙididdiga daban-daban da cikakkun bayanai game da matakin shirye-shiryen ma'aikata. Akwai keɓan ɓangaren "Rahoto" don saka idanu.
Ya hada da:
-
Rahoton horon da ke nuna bayanai game da sakamakon kammala karatun a cikin lokacin rahoton.
-
Rahoton harin yana nuna sakamakon hare-haren masu satar bayanan sirri (yawan abubuwan da suka faru, rarraba lokaci, da sauransu).
-
Rahoton ci gaban horo yana nuna ci gaban ma'aikatan ku.
-
Bayar da rahoto game da ƙarfin hali na raunin phishing (takaitaccen bayani kan abubuwan da suka faru).
-
Rahoton nazari ( martanin ma'aikata ga abubuwan da suka faru kafin / bayan).
Aiki tare da rahoto
1) Yi "Samar da rahoton".
2) Sanya sashen / ma'aikata don samar da rahoton.
3) Zaɓi lokaci
4) Za mu nuna kwasa-kwasan da kuke sha'awar
5) Samar da rahoto na ƙarshe
Don haka, rahotanni suna taimakawa wajen nuna ƙididdiga a cikin tsari mai dacewa da kuma saka idanu akan sakamakon tashar horo, da kuma halin ma'aikata.
Automation na horo
Hakanan yana da daraja ambaton ikon ƙirƙirar ƙa'idodi na atomatik waɗanda zasu taimaka masu gudanarwa su daidaita dabarun Phishman.
Rubuta rubutun atomatik
Don daidaitawa, kuna buƙatar zuwa sashin "Dokokin". Ana ba mu:
1) Saka suna kuma saita lokaci don duba yanayin.
2) Ƙirƙiri wani taron dangane da ɗayan tushen (Phishing, Training, Users), idan akwai da yawa daga cikinsu, to, zaku iya amfani da ma'aikacin ma'ana (DA / KO).
A cikin misalinmu, mun ƙirƙiri ka'ida mai zuwa: "Idan mai amfani ya danna hanyar haɗi mara kyau daga ɗaya daga cikin hare-haren phishing ɗinmu, za a shigar da shi kai tsaye a cikin kwas ɗin horo, saboda haka, zai karɓi gayyata ta imel, kuma za a fara ci gaba. da za a sa ido.
ZABI:
-> Akwai tallafi don ƙirƙirar dokoki daban-daban ta tushe (DLP, SIEM, Antivirus, sabis na HR, da sauransu).
Halin yanayi: "Idan mai amfani ya aika bayanai masu mahimmanci, DLP tana rubuta taron kuma ta aika da bayanan zuwa Phishman, inda aka haifar da ƙa'idar: ba da kwas ga ma'aikaci akan aiki tare da bayanan sirri."
Don haka, mai gudanarwa na iya rage wasu matakai na yau da kullum (aika ma'aikata don horarwa, gudanar da hare-haren da aka tsara, da dai sauransu).
Maimakon a ƙarshe
A yau mun saba da bayani na Rasha don sarrafa tsarin gwaji da horar da ma'aikata. Yana taimakawa wajen shirya kamfani don bin Dokar Tarayya 187, PCI DSS, ISO 27001. Fa'idodin horo ta hanyar Phishman sun haɗa da:
-
gyare-gyare na Course - ikon canza abun ciki na darussan;
-
Sa alama - ƙirƙirar dandamali na dijital bisa ga ƙa'idodin kamfanoni;
-
Yi aiki a layi - shigarwa akan sabar ku;
-
Automation - ƙirƙirar dokoki (al'amuran) ga ma'aikata;
-
Rahoton rahoto - ƙididdiga akan abubuwan da suka faru na sha'awa;
-
Samfuran lasisi - tallafi daga masu amfani 10.
Idan kuna sha'awar wannan mafita, koyaushe kuna iya tuntuɓar , Za mu taimaka wajen shirya matukin jirgi da shawara tare da wakilan Phishman. Shi ke nan na yau, koyi da kanku kuma ku horar da ma’aikatan ku, mu gan ku lokaci na gaba!
source: www.habr.com