Episode 5: Common High Risk Findings on Internal Penetration Tests & How to Mitigate Them

Internal penetration tests reveal shocking yet common high-risk vulnerabilities like weak passwords and misconfigurations. The discussion dives into the dangers of storing passwords in plain text and the need for better security education. Revamping password policies and embracing random generation is advocated. Common vulnerabilities in Active Directory configurations are unveiled, specifically regarding privilege escalation. Legacy systems pose significant risks with relay attacks, highlighting the urgency for improved practices in the cybersecurity landscape.