How Hackers Move Through Networks (with Ligolo)

Just did this pivoting and hacked my local police department and they loved it! They even offered me a free room with free toilet and nice orange clothes! Life is good!

brandhark

im so glad i learned how to use ligolo before doing the CPTS exam. passed on the exam in august on the first attempt <3

FrcTv

Ligolo is killer for the OSCP Active Directory set. 🎉

MalwareCube

This is so cool! It would be very interesting to do a forensic exam on the pivot machine to see what signs are left behind by Ligolo activity. Great video!

KenPryor

In my experience, servers in a DMZ don't have a second interface on an internal subnet- that defeats the purpose of the DMZ.

KevlarSlap

I love how you've grown into cybersecurity. I'm very rusty and think your videos are helping eliminate that rust.

BlizzetaNet

Anybody putting servers in a DMZ with interfaces that reside in completely different networks probably needs a recap on exactly what a DMZ is for.

PrinceJohn

These always start with, "let's assume we already obtained access to this host". That's the hard part. Everything else is easy.

jayrockjunk

Hey look, if someone sets up a server with two interfaces, one with a public IP and one with a private IP on a production internal LAN, AND they kindly let me install my hacking tool (or maybe just happen to have an unpatched vulnerability), AND they don’t use any firewall rules to limit access either on the public or private interfaces, AND they don’t use any endpoint protection tools, AND they don’t use any traffic inspections tools, it’s SO easy to hack them! /s

Yeah this isn’t remotely how a DMZ is set up. For sure there are sloppy admins who have servers bridging public and private networks like this, but that’s not called a DMZ, that’s called an invitation to the Target and Equifax awards and breaching them would likely be far easier than using a fancy pivot tool like this. They probably have 3389 wide open so you can RDP right onto their server with a guest account like it’s 1999.

New video title: Compromising networks with no security.

swilson

I wonder how anyone can provide such exciting content.
There are no two like you sir

berthold

the RED side of my brain loves ya.
the BLUE side of my brain has constant headaches!

ScottPlude

Can you make a video on protecting against this or simply show how to setup a detector for it? That would be sick. I had to subscribe after watching this demo, very well done!

aleckane

I just learnt about this tool a few weeks back for my OSCP prep. looking forward to using it in my exam soon

BillHeng

Very cool and thanks for the video!

Feedback: The multiple camera views of the video I am not the biggest fan of at this time. I feel more connected to the content when its the straight on camera angle where you are engaged with the viewers, when it switches seeing you looking in a different direction makes it feel disconnected from the content. If you plan on keeping the multiple angles personally I would like to see you engage the camera that is active. Appreciate all the new content you are producing! That is my .02.

jonathanj

easy to understand, thanks John. Nifty piece of software

ulyssesfister

Please don't listen to the people who are complaining about being your video slow. Don't change it. Most of the creator are really hard to understand

THOHATRAVELS-ox

Its easier to social engineer today directly to internal network via employee weakness (especially new people to country)

WildDisease

All of that is automated with the havoc-ligolo module as well! Cool video ^^

lilpp

I'm really glad that you broke down the meaning of cross-platform, I never would have guessed. 😂

travis

Started using this tool yesterday...
Hopefully, I'll get to understand it here

maniakdemi