DEV Community

Cover image for How I pwned hundreds of users for less than $25?
vasant
vasant

Posted on

How I pwned hundreds of users for less than $25?

#security #devops #docker #kubernetes

Introduction

As long as employees do not consider security as their responsibility and use insanely Easy to Guess Passwords, no matter how much time and money organisations invest in training, right tools, and strict policies, security compromises are inevitable.

Vasant Chinnipilli

How I pwned hundreds of users for less than $25? | by Vasant Chinnipilli | Medium

Vasant Chinnipilli ・
Medium Logo Medium

A while ago, I was engaged in performing an internal Penetration test for a reputed organisation which heavily relied on Windows infrastructure. The infrastructure was spread across different locations with a design called for every location to have its own domain, complete with numerous domain controllers (DCs), DNS servers, WINS servers, DHCP servers and work stations with so many missing patches.

This blog post explains the different stages involved in a penetration testing and gaining access to a infrastructure

Originally Published at: https://www.cloudsecguy.dev

Top comments (0)

Read next

shubhamku044 profile image

Launching Your First AWS EC2 Instance: A Complete Guide for DevOps Beginners

Shubham Sharma -

westtan profile image

Is Docker’s Market Being Eroded? An In-Depth Comparison of Docker, ServBay, Homebrew, Podman, and MAMP

westtan -

rajeshkumaryadavdotcom profile image

Unlock Ultimate Security: How to Use YubiKey (or Any Security Key) for Passwordless Access in Azure Virtual Machines!

Rajesh Kumar Yadav -

viradiaharsh profile image

Introducing the AWS CDK L2 Construct: Simplified Security for Amazon CloudFront with Origin Access Control (OAC)

Harsh Viradia -