Description: http://penetration-testing.7safe.com
Daniel Compton, Information Security Consultant of 7Safe, demonstrates a internal infrastructure penetration test on a fully patched Windows network. Daniel demonstrates how it is possible to fully compromise the domain using a fully patched Microsoft SQL server that has a firewall enabled. Using the SQL server Daniel impersonates the domain administrator account without any passwords or password hashes being known or extracted. Daniel also demonstrates the risk or wireless networks and smart phone devices which can be used to carry out the attack.
Tags: 7Safe , SQL , server , password , hashes , patched , Windows , network ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Nice video, could do without the music though.