Penetration Testing in the Real World

Viewing 20 reply threads
  • Author
    Posts
    • #5000
      Xen
      Participant

      Offensive Security recently posted a 20 minute video at their blog in which they reconstructed a pentest they performed. It’s an excellent video IMHO. Muts has again done a fantastic job and tried to explain every single step he took.

      Penetration Testing in the real world. If you are tired of “Hacking with Netcat” webcasts or “Penetration Testing with RPC DCOM”, then this movie is for you. It’s a quick reconstruction of a Security Audit we preformed over a year ago, replicated in our labs. The video is under 20 minutes long, and highly edited – attacks rarely go as quickly and smoothly as this !

      Check the video here:-
      http://www.offensive-security.com/videos/penetration-testing-in-the-real-world/

    • #31604
      morpheus063
      Participant

      Muts strikes back with another great network scenario. Great find Equix3n- – Nice and comprehensive video.

    • #31605
      kriscamaro68
      Participant

      That was a great video thanks for sharing.

    • #31606
      Ketchup
      Participant

      Thanks for sharing.  That was a great video!

    • #31607
      rattis
      Participant

      I still need to find 20 minutes where I can sit down and watch it.  :-

    • #31608
      Xen
      Participant

      I think EHNet members can post similar videos constructing scenarios from their actual pentests. That would be an awesome resource as almost everyone has his own little tricks and we can learn from each other. Even writing articles explaining how they approached a pentest would be very useful.

    • #31609
      What90
      Participant

      Excellent demo and explanation for how they did it and the mindset they used to work into the environment. Some great work and clever thinking.

      What I take from it, from the defense side, is that some simple, good practices would have stopped the attack in its tracks.

      As an example, if the servers weren’t allow outbound access to any locations, the tunneling would have failed. Simple controlled egress filters would have successful “saved” the target from being exploited in this way.

    • #31610
      Ketchup
      Participant

      @Equix3n- wrote:

      I think EHNet members can post similar videos constructing scenarios from their actual pentests. That would be an awesome resource as almost everyone has his own little tricks and we can learn from each other.

      The OffSec folks built a replica lab environment of the actual pen test.  You can’t really include the results of a live pentest in a training video.  Most clients wouldn’t go for that.  I am wondering how many hours were spent on recreating the environment and creating the video.

    • #31611
      hayabusa
      Participant

      I dunno, but based on the detail that I’ve heard they have in the OSCP lab (I signed up, today, for the 60-day OSCP v3,) I’d bet they did it pretty quickly.  After all, if you KNOW what you exploited, it shouldn’t be too hard to recreate, right?  😉

    • #31612
      mtgarden
      Participant

      I showed this video to my developers.  I used it to interest them in the actual threats posed by “minor holes.” It was an attempt to help them understand how a bad guy leverages various holes to gain control of the entire network.

      I also showed a sanitized screenshot of sqlmap dumping a HR DB through a simple website.  This was an effort to show them the danger of reusing accounts repeatedly.

      I think that the combination worked well.  I immediately received email questions and comments. 

      Anyone else try this?

    • #31613
      j0rDy
      Participant

      Thanks for sharing! downloading now and i will check it later. If it is a DCOM exploit it should be that hard to build it in a replica environment?

    • #31614
      jonas
      Participant

      Great movie!  Keep em coming if anyone have more such videos.  Kinda great when it’s not just a tut on a single method, but when its all put together its awesome =)

    • #31615
      zeroflaw
      Participant

      Sweet video! Thanks!

    • #31616
      j0rDy
      Participant

      watched the video the other day and i must say i’m impressed! this truely shows the hacker mindset you need to thourougly scan a complete network, finding the right puzzle pieces to finish and to think out of the box. this one goes into my collection!

    • #31617
      caissyd
      Participant

      Hey,

      @mtgarden: I have showed the video to the developers, managers and even a director where I work. I paused the video every  minute or so and explained in simple words what he was doing. It was very, very well received!!!

      I will probably start demos and presentations during lunch time on topics such as “How to secure a wireless router”, “SQL Injection”, “How to code securely”, etc…

      Even if it wasn’t my goal at all, it kind of put me on the map!  ;D

      I encourage you guys to do the same.

    • #31618
      Xen
      Participant

      I found more articles by muts explaining how he conducted some pentests. There’s no video this time, still the articles will help a lot of people.

      A White Hat’s Penetration Test

      How I Got Root A Penetration Testers Diary
      Penetration Test : My Meanest Hack

      Also, how can someone forget the 15 minute network pentest video series by Ryann Linn!
      Video: The 15-Minute Network Pen Test Part 1
      Video: The 15-Minute Network Pen Test Part 2

      These clearly demonstrate the hacker approach and give you a ‘virtual’ experience of a pentest. Excellent stuff for beginners! Furthermore, I suggest going through sample pentest reports available to you. The methodology section in these reports is nothing more than how the tester approached the pentest. I enjoy going through them, if nothing more than just to see different approaches taken by different pentesters. Moreover, they always give you little tips/tricks.

    • #31619
      j0rDy
      Participant

      man, i cant get enough of those pentest stories! thanks for the find!

      the 15min pentest vids are on EH.net also, remember these is more then just a forum 😉

    • #31620
      Xen
      Participant

      @j0rDy wrote:

      the 15min pentest vids are on EH.net also, remember these is more then just a forum 😉

      I’ve provided the forum link only  😉

    • #31621
      rattis
      Participant

      Finally got around to watching this. Wow is there so much that I don’t know.

    • #31622
      j0rDy
      Participant

      @chrisj wrote:

      Finally got around to watching this. Wow is there so much that I don’t know.

      the same thing keeps amazing myself too…

    • #31623
      UNIX
      Participant

      Nice video, thanks for sharing.

Viewing 20 reply threads
  • You must be logged in to reply to this topic.

Copyright ©2021 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?