Y U NO Sanitize bro?

Presented at THOTCON 0x4 (2013), April 26, 2013, 5:30 p.m. (25 minutes).

Many people use eBay as a means of purchasing low priced tech gear, more times than not the gear that's being sold is coming from somebody upstream (directly or indirectly) with a much bigger budget. How does that gear get to eBay? What happens when your corporation uses a recycling company to get rid of parts your infrastructure? This will be a quick look into what happened when I purchased a switch off of eBay with a bad PSU. As always the config had not yet wiped amongst multiple other mistakes... Using what we have we will quickly run through how somebody of a less discerning background may exploit every bit of the haphazardly provided information. More specifically... we will use "OSINT" to map out who the seller is and run through a scenario of having him lead us to his storage locker full of recycled hardware so we can steal it and potentially more of the secrets that are hiding on this gear.


Presenters:

Similar Presentations: