Penetration testers and security peeps of bluesy What are your standard checks when looking at a new to you organisation? - ThreadSky

asmodea-gorgon.bsky.social • 49 days ago

Penetration testers and security peeps of bluesy

What are your standard checks when looking at a new to you organisation?

Comments

chriselgee.bsky.social•39 days ago

Depends on scope/environment, but good starting points are:
- Externally exposed services (all MFA?)
- Bloodhound in Active Directory
- Scoutsuite for cloud assets

asmodea-gorgon.bsky.social•39 days ago

thank you
what about if your testing as if you are a new starter at that org, so you have basic access etc?

chriselgee.bsky.social•39 days ago

Sure yeah, we'd call that an assumed breach test. I'd still use Bloodhound for sure and toss in:
-Responder
-Digging through file shares
-Kerberoasting

asmodea-gorgon.bsky.social•38 days ago

thank you, i knew there was a name for it but had completely forgotten it

iagox86.bsky.social•39 days ago

Pro-tip to pentesters: you can just ask! I had great luck asking customers (or better yet, their engineers / ops / admins) what they're most concerned about.

Many of them have pet peeves that they know are bad but can't get the leverage to fix.

opfuchs.gay•39 days ago

Exactly this. As a consultant, at least half of the time one of the reasons we're being brought in is to cut through organizational politics/be an outside voice saying something.

asmodea-gorgon.bsky.social•39 days ago

nothing like proving something that the IT team knows is an issue IS ACTUALLY AN ISSUE
to get the resources to fit it

ericconrad.com•39 days ago

This is my go-to move. Just ask the right people what they're worried about. They know where the bodies are buried.

A tell-tale sign of a dysfunctional organization: "I'll probably get in trouble for saying this, but..."

iagox86.bsky.social•39 days ago

Yes! You also get so many eyerolls and stories like "I've been complaining about this for years and nobody cares". We care!

asmodea-gorgon.bsky.social•39 days ago

that's so good, I'll have to remember that!

Comments

Posting Rules

Reply