Windows User Enumeration, Living off the land
One of your users has fallen for a phishing attack! His computer has been compromised and an attacker is now actively inside your network.
We'll show you a simple method an attacker can use to leverage SMB to discover usernames and passwords. Not only will you be surprised how easy this is using the tools built into Windows, but you'll also see how to detect and defend against it.
Speakers Bio: Dale Hobbs is a veteran of IT with over 18 years of experience including server and network administration, architecture and security, security policy development, adoption and direction setting in accordance with regulatory compliance and industry standards. He currently holds the GSEC, GCIH, GPEN and GCCC certifications as well as teaches "Security 401 Security Essentials" and "Security 504 Hacker Tools, Techniques, Exploits, and Incident Handling" for the SANS Institute.