What is SNMP Enumeration?

SNMP(Simple Network Management Protocol) Enumeration id process of enumerating user accounts and devices on a target system using SNMP This section describes SNMP enumeration, information extracted via SNMP enumeration, and various SNMP enumeration tools used to enumerate user accounts and devices on a target system. SNMP is an application layer protocol that runs on UDP and maintains and manages routers, hubs, and switches on an IP network. SNMP agents run on windows and Unix networks on networking devices. SNMP Enumeration is the process of creating a list of the user’s…

Read More

What is Vulnerability Stack?

One maintain and accesses web applications through various levels that include custom web applications, third-party components, databases, web servers, operating systems, networks, and security – Vulnerability Stack. All the mechanisms or services employed at each layer help the user in one way or the other to acess the web application securely. When talking about web applications, organization considers security as a critical component because web applications are major sources or attacks – Vulnerability Stack. The following Vulnerability Stack shows the layers and the corresponding element/mechanisms/service employed at each player, which…

Read More

What is Privilege Escalation?

An attacker can gain access to the network using a non-admin user account and the next step would be to gain administrative privilege escalation. Attacker performs privileges escalation attack which takes advantage of design flaws, programming errors, bugs, and configuration oversights in the OS and software application to gain administrative access to the network and its associated applications. These privileges allows attacker to view critical/sensitive information, delete files, or install malicious programs such as viruses, Trojan, worms, etc. Types of Privilege Escalation Privilege escalation take place in two forms. They…

Read More