Recon yourself?
By Keatron Evans on Mon, 01/05/09 - 5:09pm.I'm still shocked at how little some admins know about their own networks. I often advise clients on the recon steps we take and suggest they do the same. For example, I've often been on sites that have clear and defined "no wifi" policies, but yet, during wireless LAN surveys paired with ARP discovery, we often find they indeed have wireless access points all over the place, and worse yet, nobody seemed to know it. I'll often see old Unix servers still connected to the network and not documented anywhere. It usually turns out these servers haven't been used (or patched) for years. Just nobody bothered to unplug them or disconnect them from the LAN. Why? How can one possibly secure something if they don't know it's there? How can a security guard physically secure a building if said building has 10 doors and he only knows about 5 of them?
Keatron
- About Author Expert: Keatron Evans
Keatron Evans is a senior penetration tester and principal of Blink Digital Security, based in Chicago. He has more than 11 years experience doing penetration tests, vulnerability assesments and forensics. Keatron regularly consults with and sometimes trains government entities and corporations in the areas of network penetration, SCADA security, and other related national infrastructure security topics. He holds several information security certifications including CISSP, CSSA, CEH, CHFI, LPT, CCSP, MCSE:Security, MCT, Security+, and others. When not doing penetration tests, you can find Keatron teaching ethical hacking and forensics classes worldwide.
We are giving away 15 copies of Keatron's book Chained Exploits: Advanced Hacking Attacks, which will be published in February. Go here for entry details.
Most Discussed Posts
-
Network World, Inc
The Connected Enterprise