Penetration Testing mailing list archives
Re: Kaseya
From: H D Moore <sflist () digitaloffense net>
Date: Thu, 29 May 2008 17:42:59 -0500
Running psexec against a rogue node, with domain admin credentials, will get your the domain controller pwned (via relay attacks). It sounds like the agent install is not automatic for remote machines, but in the case of a manual install against a rogue system, it is an issue. On Thursday 29 May 2008, Kevin Reiter wrote:
Another thing to note is the fact that psexec is used for remote tasks. psexec lives only on the server, which is located at the MSP's data center/NOC, and communications between the agent and the server are encrypted. Sniff away..
------------------------------------------------------------------------ This list is sponsored by: Cenzic Top 5 Common Mistakes in Securing Web Applications Find out now! Get Webinar Recording and PPT Slides www.cenzic.com/landing/securityfocus/hackinar ------------------------------------------------------------------------
Current thread:
- Kaseya M.B.Jr. (May 24)
- RE: Kaseya Shenk, Jerry A (May 26)
- RE: Kaseya Kevin Reiter (May 28)
- Re: Kaseya M.B.Jr. (May 28)
- Message not available
- Re: Kaseya M.B.Jr. (May 28)
- RE: Kaseya Shenk, Jerry A (May 26)
- RE: Kaseya Kevin Reiter (May 28)
- RE: Kaseya Utz, Ralph (May 28)
- Re: Kaseya H D Moore (May 28)
- Re: Kaseya M.B.Jr. (May 31)
- RE: Kaseya Kevin Reiter (May 29)
- Re: Kaseya H D Moore (May 29)
- Re: Kaseya M.B.Jr. (May 29)
- Re: Kaseya H D Moore (May 28)