A Pentester’s Voyage – The First Few Hours
ATT&CK techniques detected
T1046Network Service Discovery
99%
“nmap scan checks for known smb ports and knocks. the polite question is “ do you support smb signing and is it kindly enforced? ” nmap - su - st - p u : 137, t : 139, 445 - - script = smb2 - security - mode. nse 10. 10. 98. 0 / 24 finding : smb message signing disabled at this po…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1557.001Name Resolution Poisoning and SMB Relay
86%
“##gs with siet. siet. py - i 10. 10. 10. 10 - g finding : cisco type 7 passwords in use it is about 8 : 30 am local time at this point, and a series of findings have been produced and it is time to gear up and get serious. the llmnr > relay attacks have been discussed extensively…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
Jordan Drysdale // Many methodologies have been written, but the first few hours on an internal pentest tell the story of an organization’s security culture. This type of test differs […]
The post A Pentester’s Voyage – The First Few Hours appeared first on Black Hills Information Security, Inc..