I was lucky enough to get the reminder to K.I.S.S. on a recent engagement. While the latest TTPs can be very useful, it is important to keep “the basics” in mind.
- ARP Poisoning Guide: https://www.tutorialspoint.com/ethical_hacking/ethical_hacking_arp_poisoning.htm
- Ettercap: https://www.ettercap-project.org/
- Bettercap: https://www.bettercap.org/
- PCredz: https://github.com/lgandx/PCredz
- SMB Encryption: https://docs.microsoft.com/en-us/windows-server/storage/file-server/smb-security
- Detection of Arp Spoofing: https://www.comparitech.com/blog/vpn-privacy/arp-poisoning-spoofing-detect-prevent/
Show notes: https://seangoodwin.blog/sts001