I was mulling over stuff I have done with pen testers and red teams in the past and I have came up with a name for how I react to finding them, Offensive Defense.Basically in real war the enemy shoots back.
-
I was mulling over stuff I have done with pen testers and red teams in the past and I have came up with a name for how I react to finding them, Offensive Defense.
Basically in real war the enemy shoots back. So if I catch you attacking my services or users I'm going to poke back and attack back.
My favorite example of this that I have done is we got a phishing email, when I looked at the site I noticed that the server had a MSSQL port open to the internet, so I started flooding that port until the database went down. I protected my users with a well placed shot. -
nomad :verified_pride:replied to Lord Kusuriya :tower: last edited by
@kusuriya A story:
Many, many years ago at $previous_employer a VP who was not in any way responsible for IT decided we needed some PEN testing so he looked in the back of the local computer rag (you know the kinds with all the parts ads you'd find outside every computer store back in the 90s) and found a company that advertised there.
He hired them and arranged for them to have a conference room assigned to them, thus giving access to our internal network (this was back in the day when you had A Firewall<tm>.)
They were... not competent. The tool they were using popped up an alert on every windows desktop they scanned saying the host was being scanned.
Needless to say, they were marched out of the building by armed guards shortly after starting.
We, ahem, passed that particular test.
(I decline to comment on the soft chewy center of the network being reachable by anyone in a conference room.)
-
Lord Kusuriya :tower:replied to nomad :verified_pride: last edited by
@nomad that sounds like how one of my buddies got his first infosec job. He saw they were looking for IT folks to focus on securing their network back in the late 90s early 00s so he broke in and put a calendar invite for an interview on the hiring managers calendar. When they asked "why should we hire you" his response is "well for starters I invited myself to this interview"