According to an employee with knowledge of the system, the password to the Louvre's video surveillance system was simply "Louvre" at the time of the robbery last month.
It depends on how well segmented is their network, but all you might need for that is a Raspbery PI with ethernet and GSM.
I’ve done some engagements where we sent someone into the company to get in as an air conditioning tech, and when they got in he planted that device between a printer and the network. It was set up to forward all traffic, but also allowed us to connect through GSM and get into the network.
It takes like a few seconds to plant it.
Or if it’s really bad, then you might be able to reach it from the WiFi.
If your network does not have NAC and just lets unknown devices plugged into a random wall outlet inside, you might as well get rid of passwords alltogether.
There are some ways how to get around NAC. If it’s older 802.1x, you can use https://github.com/s0lst1c3/silentbridge, but what usually works for us is simply cloning the printer MAC, because older printers can’t do authentication and rely on MAC whitelisting.
Making a MITM device that just clones the MAC when you plug it between the printer and the network isn’t that difficult.
It depends on how well segmented is their network, but all you might need for that is a Raspbery PI with ethernet and GSM.
I’ve done some engagements where we sent someone into the company to get in as an air conditioning tech, and when they got in he planted that device between a printer and the network. It was set up to forward all traffic, but also allowed us to connect through GSM and get into the network.
It takes like a few seconds to plant it.
Or if it’s really bad, then you might be able to reach it from the WiFi.
If your network does not have NAC and just lets unknown devices plugged into a random wall outlet inside, you might as well get rid of passwords alltogether.
There are some ways how to get around NAC. If it’s older 802.1x, you can use https://github.com/s0lst1c3/silentbridge, but what usually works for us is simply cloning the printer MAC, because older printers can’t do authentication and rely on MAC whitelisting.
Making a MITM device that just clones the MAC when you plug it between the printer and the network isn’t that difficult.
But I agree, NAC is important!
Or some employee might have dropped their own wifi access point onto the Lan for their own convenience.
I found 2 of those on the same floor during one sweep…