Security Stories/Lessons Learned/Case Studies
T4-3A. Pre-grad Pwning - How I cracked an MSP at 17
Tuesday, June 11, 2024 12:30 PM - 1:30 PM
Room 3A
Description
Join me for a thrilling retelling of my first corporate penetration test, which I conducted while still in high school. I'll take you on a week-long journey through the LAN of an MSP, starting from no network access and culminating in gaining that sweet, sweet Domain Administrator access, all using free and open-source pentesting tools. Afterwards, I'll discuss what I learned from the engagement and share some unique observations from the perspective of an 17-year-old in the Information Security industry. By the end of the talk, you'll hopefully have some new tools to add to your patching, pentesting, or people-managing procedures. Don't miss this tale of coworker complaints and domain domination, a story you won't find anywhere else!
Learner Objectives
After this session, learner will (have)...
- Enjoyed a unique and engaging story about a solo penetration test.
- Learn some new attack and detection opportunities to apply in their environment.
- Understand the burdens MSPs carry to protect themselves and critical infrastructure.
- Gain unique insight from young blood inside the Information Security industry.
Speakers