Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Goltsev Yuriy - Ломать - не строить!

0c988f4618b436b14ce6ddcecd52d11d?s=47 DC7499
May 22, 2015
Research
0
25

Goltsev Yuriy - Ломать - не строить!

DEFCON Moscow 8

0c988f4618b436b14ce6ddcecd52d11d?s=128

DC7499

May 22, 2015
Tweet

More Decks by DC7499

See All by DC7499
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
170
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
140
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
210
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
1
180
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
1
150
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
170
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
250
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
300
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
300

Other Decks in Research

See All in Research
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
0
1.3k
Db1b7e3c6fe6f6a0e9752b2c19bf5473?s=48 makenowjust
1
130
227b4a9c7123b3b5b5373e24e0eb6180?s=48 ikuyamada
6
460
6d667e747a4a1cda7d201c3358424257?s=48 digitalnaturegroup
0
440
588cbb64aaebe393fcdb3e05c1e34d6c?s=48 yuawn
0
450
B91bb8ea34ba992953bfcdf5a51ea457?s=48 mns54
2
600
D0167b760673d702a06427fb3f878696?s=48 umepon
0
180
32bc2790201d9301bbe5be830b03ff04?s=48 yoshipon
0
150
Dca4f8abd1e78940052ee52c85c4d2ed?s=48 shimacos
0
660
40c3343a57cb430f12aed951798fd0fc?s=48 hirotohonda
1
490
191b51e394766638990831da6691d089?s=48 tkym1220
0
490
842835ac15342badc48543e39ce0431c?s=48 masahiro1
0
120

Featured

See All Featured
F57e2136eb9895eb95ff5dc8a1c02677?s=48 zakiwarfel
88
3.4k
9fa239b3154a0169d99ab7bf1422dd12?s=48 marcelosomers
221
15k
C9b18d9dff88a9dd2393364c2b3b21bd?s=48 colly
66
3k
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
119
8k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
73
1.5k
C86443373fbfe92996aa882d0d7a59f8?s=48 imathis
479
150k
5ce91fa49a613cbc3e20d5f96856473f?s=48 edds
56
9.4k
C620790ae5bf5b50c245b2e0ef95f338?s=48 deanohume
294
28k
4394ceb8b277f35ee3da7030384efb5d?s=48 davidbonilla
71
3.6k
F383c6a4dc55e331bbe2987b622cee6b?s=48 stephaniewalter
262
11k
Be9caeb9d4ef9944d151af909063ed6e?s=48 samlambert
237
10k
282d599b414022eba5096510f675b6e2?s=48 chrislema
231
16k

Transcript

  1. Ломать - не строить! Юрий Гольцев @ygoltsev

  2. Intro

  3. Invest in your knowledge of practical information security

  4. Please, don’t order a penetration test until…

  5. My own TOP of security issues, related to internal networks:

    1. Weak password policy 2. Default accounts 3. Local accounts/unnecessary privileges 4. Windows architecture 5. WPAD configuration mismatch 6. Antivirus software configuration mismatch 7. No network segmentation 8. No patch management

  6. Weak password policy Description Easy to bruteforce Common Targets Directory

    Service (Active Directory/Lotus Domino/LDAP/Novell/etc) Recommendations Implement strong password policy, just follow next rules: - 8 chars (at least) -Lower, upper case -Alpha-Numeric Check for common passwords once a day (at least) - Special chars - Change every 60 days

  7. Default accounts Description Easy to bruteforce Common Targets DBs, network

    devices (routers/printers/etc) Recommendations -Disable all unused accounts -Set strong password

  8. Local accounts/unnecessary privileges Description Local administrator accounts/privileges – is bad

    Common Targets Windows hosts Recommendations -Disable accounts of local administrators on Windows hosts -Do not use GP to manage accounts of local administrators on Windows hosts

  9. Windows architecture Description You can’t prevent it, if you use

    it Common Targets Windows hosts Recommendations -Follow principle of minimal privileges -Use privileged accounts for administration tasks only -Implement two factor authentication for privileged accounts -Implement patch management

  10. WPAD configuration mismatch Description Very useful for corporate users if

    implemented, and for attacker – if not Common Targets Windows hosts Recommendations Disable WPAD (Web Proxy Auto Discovery) feature if it is not implemented

  11. Antivirus software configuration mismatch Description Antivirus software can be disable

    with local admin privileges Common Targets Windows hosts Recommendations Configure self defense feature of antivirus software

  12. No network segmentation Description No restrictions and no data filtration

    on network level Common Targets Network topology Recommendations Implement data filtration – it is better to use white lists for access

  13. No patch management Description MS08-067 still can be found during

    penetration test Common Targets Windows/Unix hosts Recommendations Implement patch management

  14. Outro