Chapter 11

Targeting Support Systems

Abstract

This chapter examines support systems, specifically database servers and network shares. These systems often provide backend access to sensitive data within and allow a professional penetration tester to circumvent other access controls, such as those found in Web interfaces. We will explore different techniques to attack these support systems that will allow us to obtain unauthorized access.

Keywords

Database

File sharing

Network shares

SQL

mysql

Samba

Contents

Chapter Points

 Database Attacks

 Network Shares

Introduction

This chapter delves deeper into a couple of different topics we briefly touched on back when discussing Chapter 8, and ...

Get Professional Penetration Testing, 2nd Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.