Dark Web Monitoring

What solution did you use??

I’m currently looking at the following products

  1. Digital Shadows
  2. Breach Alert (RepKnight)
  3. Onion Scan (Opensource)

Digital Shadows and Breach Alert both seem to scan the dark web and have the ability to search on specific criteria and alert within a few minutes when an alert is triggered.

Digital Shadows had a nice feature flagging domain names which in theory could be used in phishing attacks against your company. For example Stephenhackers.co.uk if the actual domain, but stephenhackers.live was just purchased.

Digital Shadows goes to flag other interesting information. For example latest vulnerabilities.

 

This research is to be continued……

Tag @stephenhackers on Twitter with other products your using or features you find add the most value to your business.

How To Access A SQL Server 2008 Databases WITHOUT SA (SysAdmin) Credentials

Challenge : How to make a backup of a SQL 2008 database without knowing any working credentials.

Log on to the Windows 2008 R2 server running SQL Server 2008 as a domain admin.

Launch SSMS (SQL Server Management Studio)

Issue the windows credentials have no permissions and there were no obvious groups in AD (Active Directory) which would have access.

So…back to basics…..

PS tools to the rescue

….………………………………………………………………..

Download PS Tools https://docs.microsoft.com/en-us/sysinternals/

Store in c:\temp\

The tool to use is PSexec

Launch command prompt

Browse to c:\temp

Type : psexec -i -s SSMS.exe

This will launch SSMS (SQL Server Management Studio) as system. By luck would have it, window auth under “system” has full SA rights in SQL 2008.

I can then connect to all databases and compete the backups. I can then also check the security permissions for users