Goltsev Yuriy - Ломать - не строить!

0c988f4618b436b14ce6ddcecd52d11d?s=47 DC7499
May 22, 2015
Research
0
18

Goltsev Yuriy - Ломать - не строить!

DEFCON Moscow 8

0c988f4618b436b14ce6ddcecd52d11d?s=128

DC7499

May 22, 2015
Tweet

More Decks by DC7499

See All by DC7499
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
150
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
100
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
200
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
1
160
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
1
140
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
150
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
220
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
230
0c988f4618b436b14ce6ddcecd52d11d?s=48 defcon
0
260

Other Decks in Research

See All in Research
A66d070fc253858f8c5a93c4412fa702?s=48 uratatsu
1
400
247ffe3c4d6ee344a081694419960a97?s=48 wangzwhu
0
220
1b491df018c8b671a4b97ee5a167e85c?s=48 ssryuki
2
600
A93b83622f2c6556b4a85db37b1c5489?s=48 pshiko
1
460
0fd69f775497ec247d1daff4ee7dcde8?s=48 yasuhiromuraji
1
220
E21d1f0881d623ba04709e94d75be2a8?s=48 tam17aki
0
180
0d4ef9af8e4f0cf5c162b48ba24faea6?s=48 ept
0
470
D7ef5177ffe7ddec8dc5e11547963f99?s=48 motokimura
6
4.6k
D7ef5177ffe7ddec8dc5e11547963f99?s=48 motokimura
2
390
31bf3df4bac9b584c89bc11b0c84e132?s=48 resnant
1
1.2k
9af9d5a6a9c3150745042f69451fee64?s=48 suzukimasayuki
0
220
B15fbecd95ea25d06214feb4ade9d42d?s=48 leriomaggio
1
120

Featured

See All Featured
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
435
28k
06f8b41980eb4c577fa40c41d5030c19?s=48 keathley
12
420
1f74b13f1e5c6c69cb5d7fbaabb1e2cb?s=48 sferik
606
53k
A0517b08532aec8ab2aae3f65d40ad86?s=48 hannesfritz
26
850
766b9746b59e6f09e280cd33cf4ed419?s=48 skipperchong
2
400
027d1ebf66cc039a0bd3b55eeadbe75d?s=48 sachag
447
35k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
69
1.2k
C35e01544a0dd94a2cf1619ee8a42ebb?s=48 clairelew
7
1.1k
6bb82b13cda86d3b821fa44100335ddf?s=48 thoeni
2
290
C9b18d9dff88a9dd2393364c2b3b21bd?s=48 colly
183
14k
9375a9529679f1b42b567a640d775e7d?s=48 schacon
144
6.4k
C44e1f7e22c3f23cff7bc130871047ef?s=48 eileencodes
110
24k

Transcript

  1. Ломать - не строить! Юрий Гольцев @ygoltsev

  2. Intro

  3. Invest in your knowledge of practical information security

  4. Please, don’t order a penetration test until…

  5. My own TOP of security issues, related to internal networks:

    1. Weak password policy 2. Default accounts 3. Local accounts/unnecessary privileges 4. Windows architecture 5. WPAD configuration mismatch 6. Antivirus software configuration mismatch 7. No network segmentation 8. No patch management

  6. Weak password policy Description Easy to bruteforce Common Targets Directory

    Service (Active Directory/Lotus Domino/LDAP/Novell/etc) Recommendations Implement strong password policy, just follow next rules: - 8 chars (at least) -Lower, upper case -Alpha-Numeric Check for common passwords once a day (at least) - Special chars - Change every 60 days

  7. Default accounts Description Easy to bruteforce Common Targets DBs, network

    devices (routers/printers/etc) Recommendations -Disable all unused accounts -Set strong password

  8. Local accounts/unnecessary privileges Description Local administrator accounts/privileges – is bad

    Common Targets Windows hosts Recommendations -Disable accounts of local administrators on Windows hosts -Do not use GP to manage accounts of local administrators on Windows hosts

  9. Windows architecture Description You can’t prevent it, if you use

    it Common Targets Windows hosts Recommendations -Follow principle of minimal privileges -Use privileged accounts for administration tasks only -Implement two factor authentication for privileged accounts -Implement patch management

  10. WPAD configuration mismatch Description Very useful for corporate users if

    implemented, and for attacker – if not Common Targets Windows hosts Recommendations Disable WPAD (Web Proxy Auto Discovery) feature if it is not implemented

  11. Antivirus software configuration mismatch Description Antivirus software can be disable

    with local admin privileges Common Targets Windows hosts Recommendations Configure self defense feature of antivirus software

  12. No network segmentation Description No restrictions and no data filtration

    on network level Common Targets Network topology Recommendations Implement data filtration – it is better to use white lists for access

  13. No patch management Description MS08-067 still can be found during

    penetration test Common Targets Windows/Unix hosts Recommendations Implement patch management

  14. Outro