I have recently been doing some lab experiments with VMware vSphere. I’m running three ESXi hosts with vCenter Server Appliance on one of them. Out-of-the-box vCenter comes with a self-signed certificate, which means ignoring the SSL warning on every log-on. Instead, I wanted to implement a valid certificate from a… Read More »Replace vCenter Server Appliance certificate with valid SSL from a trusted PKI – How to
There are some common misconceptions regarding DNS dynamic updates and DHCP servers. In this post I will share my knowledge about this and how to automatically update PTR-records with dynamic updates enabled. First off, what is DNS Dynamic Updates? Let’s get that out of the way right away: None: Dynamic update… Read More »DNS Secure Dynamic Updates and DHCP – How does it work and how to update PTR-records in DNS?
In my previous article I wrote a few words about the WPAD/LLMNR protocols and gave you an example of how to use wpad to set up an attack. Now, more importantly, here are a few tips on how to protect your network being vulnerable. Tip #1 – Turn off WPAD… Read More »The dangers of WPAD and LLMNR – Protect your network
There are already some great resources out there explaining vulnerabilities linked to the Web Proxy Auto-Discovery Protocol (WPAD) and Link-Local Multicast Name Resolution (LLMNR) protocol. In this post I will demonstrate an example using WPAD poisoning and Brute Force. Basically, WPAD is an auto-discovery protocol used by web browsers to… Read More »The dangers of WPAD and LLMNR – Poisoning attack