I encountered something on a recent #pentest that I thought was worth sharing. I conduct #vulnerabilityassessments and #penetrationtesting against lots of different types of platforms, including #ICS, #SCADA, #transportation, and #infrastructure. I use the #netdiscover tool in a lot of cases, and even tools like #OpenVAS or #tenable #nessus for host discovery depending on the situation. However, on a recent engagement, a team member kept trying a host discovery scan using #nessus and his connection to the target Wireless AP kept getting dropped. It turns out this was a security feature. However, using a ping sweep (like the one described in this article: https://lnkd.in/ekW9Aki and taught during the Offensive Security Penetration Testing with Kali Linux ( #pwk #oscp), a security engineer or #redteam member can very quietly assess the environment for potential targets. This is not a 100% solution, by any means, as many securely configured systems will ignore or block #ICMP traffic. But it can be a useful tool to keep in your tool box. Hope you all find this helpful and good hunting. #cyber #cybersecurity #penetrationtesting #hacking
