The intent of this paper is to present a compilation of the easiest and most prevalent network-based techniques an attacker can use to gain access to systems and data, also popularly known as “low-hanging fruit” in the information security community. More often than not, these lead to complete compromise of a Microsoft Windows domain. The focus of this paper is on gaining the first foothold on the network. These methods are based on my personal experience and hence are subjective, and most penetration testers would concur with many, if not all, of them. This paper does not discuss new attacks, but rather presents commonly known methods of finding low-hanging fruit, the ease with which they can be exploited, the impact of this exploitation, and, finally, remediation suggestions to address them.
Thank you for verifying your email address!
To complete your account setup, please create a password for your account
Please wait while we redirect you to your profile page or click here.
Congrats! We will now take you to your account.
Login to your account to save & follow content. Keep up with the latest across vendors, technologies, and content types.
Don't have an account yet? Create one to log in.
Welcome to ITUpdate!
By signing up, you can curate content with your selection of vendors, technology classification, and content type. With our Save, Follow, and Share features, you can keep yourself always updated on the latest in the world of IT.
To share please enter your Email address
To Add Following, please enter Email address
To Save Content please enter Email address
This website uses cookies to enhance user experience, analyse site traffic, and for marketing purposes. By clicking "Accept All," you consent to our use of cookies.