Attacks of the Industry: Review of the techniques that still wonderfully work - Paula Januszkiewicz
Session Level = 100-300
Are there any attacks that are effective, reliable and almost always work? Of course! The attacks like Pass-The-Hash, Spoofing or SMB Relay are still one of these awesome tactics allow attacker or penetration tester to get to a target organization.
Even though organization manages well the infrastructure, patches are regularly installed, network is monitored – they are still working perfectly as it is really a matter of misconfiguration rather than serious security vulnerability.
The problem is that some infrastructure mechanisms relay on type of communication used within the attacks and they use it for the normal communication: single sign-on authentication, service accounts, network sharing etc.
Join us in this finalizing keynote to become familiar what are the biggest mistakes in infrastructure security that from the attacker perspective can be pretty much always exploited and leave the conference with suggestions & ideas how to reach the next level of security in your workspaces.
Speaker: Paula Januszkiewicz