Chapter 11: Whoot… I Have To Go Deep

After reading the previous chapter, we have a foothold/shell, but now what? Next, we need to understand where we have landed and what we have access to. This includes gathering as much information as possible, harvesting credentials, mapping network connections, using proxies to run internal network scans, and discovering pivotable hosts. This is the phase where we need to traverse the inside of the system. We can accomplish this by using tools to map the network through proxies and go deeper. Depending on the entry point, there will be key information to discover, including clues, which will provide details about lower-level systems that will be required to get down to the physical I/O.

In this chapter, ...

Get Pentesting Industrial Control Systems now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Pentesting Industrial Control Systems by Paul Smith

Chapter 11: Whoot… I Have To Go Deep

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly