Go offline with the Player FM app!
7MS #354: Tales of Internal Pentest Pwnage - Part 2
Manage episode 230000591 series 1288763
Today's episode is the thrilling, exciting, heart-pounding conclusion of Tales of Internal Pentest Pwnage - Part 1. In this episode, we cover the final "wins" that got me to Domain Admin status (and beyond!):
Got DA but can't get to your final "crown jewels" destinations? How about going after the organization's backups (evil grin!)
Got DA but stuck to find hot leads to where the crown jewels are? Get snoopy and go through people's files, folders and...bookmark caches! (evil grin #2!)
If your nmap/eyewitness scan turns up Web sites with simply an IIS default landing page or "It works!" Apache page on it, there's probably more there than meets the eye.
We also talk about lessons learned from this pentest - both things done well and things the org can do to make the next pentester's job a lot harder.
641 episodes
Manage episode 230000591 series 1288763
Today's episode is the thrilling, exciting, heart-pounding conclusion of Tales of Internal Pentest Pwnage - Part 1. In this episode, we cover the final "wins" that got me to Domain Admin status (and beyond!):
Got DA but can't get to your final "crown jewels" destinations? How about going after the organization's backups (evil grin!)
Got DA but stuck to find hot leads to where the crown jewels are? Get snoopy and go through people's files, folders and...bookmark caches! (evil grin #2!)
If your nmap/eyewitness scan turns up Web sites with simply an IIS default landing page or "It works!" Apache page on it, there's probably more there than meets the eye.
We also talk about lessons learned from this pentest - both things done well and things the org can do to make the next pentester's job a lot harder.
641 episodes
All episodes
×Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.