Internal Penetration Testing
An internal penetration test simulates the actions of an attacker operating from within the network. Our Security engineer will scan the network to uncover potential vulnerabilities in connected hosts. They will also execute both common and advanced internal network attacks, including LLMNR/NBT-NS poisoning, man-in-the-middle attacks, token impersonation, kerberoasting, pass-the-hash, golden ticket exploits, and others. The engineer will aim to move laterally across the network, compromise domain user and admin accounts, and exfiltrate sensitive data.
Our Approach
All testing performed is based on the NIST SP 800-115 Technical Guide to Information Security Testing and Assessment, OWASP Testing Guide (v4), and customized testing frameworks.
Planning
Rules of engagement are obtained and customer goals are collected.
Discovery
To find potential weaknesses, exploits, and vulnerabilities, we do enumeration and scanning.
Attack
Verify possible weaknesses by exploiting them, and carry out more research after gaining new access.
Reporting
Document all discovered exploits and vulnerabilities, unsuccessful attempts, and the company's advantages and disadvantages.
Thorough Testing
Activities performed during internal penetration testing include, but are not limited to:
- Vulnerability scanning and service enumeration
- Man-in-the-middle attacks (LLMNR/NBT-NS poisoning, SMB relaying, LDAP relaying, IPv6 relaying, etc.)
- Hash cracking
- " Kerberoasting attacks
- Password and pass-the-hash attacks
- Shared resource enumeration
- Pivoting attacks
- Ticket attacks, such as silver tickets and golden tickets
- Other testing depending on specific customer content and footprint
Discover How We Can Protect Your Assets
Reach out to learn how Ouroboros Security can address your cybersecurity challenges. Call us, send an email, or complete the contact form below to begin securing your organization today.