SMB Relay Attacks Explained: Why You MUST Enable SMB Signing Immediately
HTML-код
- Опубликовано: 1 окт 2024
- SMB relay attacks are a very simple and effective method that attackers can use to get user credentials or hashes.
Once attackers have this hash, they can use it to escalate their access on other systems in your environment.
In this video, we also discuss how SMB Signing can prevent relay attacks and help harden your environment.
For more guides on small business cybersecurity strategies and tips, check out: theinfosecacademy.com
interesting video thank you for sharing!
Would have loved to see how the traffic looks like with signing on though
Trying to fully understand SMB and appreciate your videos. Question, what is the point in enabling smb without smb signing? Is there still some sort of security without the singing enabled?
does linux samba use smb signing? or can it rather?
You need to set it in the samba conf file "client signing = mandatory"
What a great video. Very well said. Thanks.