Lateral Movement with Infection Monkey

Learn to map and compromise vulnerable network paths with a real propagating payload and correlate lateral movement testing with MITRE ATT&CK and Zero Trust Principles.
Course info
Level
Intermediate
Updated
Aug 11, 2020
Duration
28m
Table of contents
Description
Course info
Level
Intermediate
Updated
Aug 11, 2020
Duration
28m
Description

Unsure of whether or not configuration vulnerabilities are providing adversaries with a clear path of lateral movement within your environment? Or do you have untested controls you are “pretty sure” defend against lateral movement? In this course, Lateral Movement with Infection Monkey, you will learn how to configure and employ the Infection Monkey to test for lateral movement and network segmentation against known MITRE tactics. First, you will learn how to launch the team server and GUI client. Next, you will discover how to configure the Monkey against MITRE. Finally, you will explore how to how to identify the vulnerable network paths and interpret results for actionable hardening steps. When you are finished with this course, you will have the skills and knowledge of lateral movement, network discovery, and credential compromise techniques needed to steps to proactively improve security posture against them.

About the author
About the author

Maril Vernon, “SheWhoHacks,” has 7 certifications in pentesting and security in one year including: Metasploit Pro and AppSpider Pro Certified Specialist, AWS CCP, APT by BHIS, and Sec+.

Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hello, welcome to Pluralsight and this course in the Red Team tool series featuring Infection Monkey, the open source lateral movement and network discovery tool built by Guardicore. Infection Monkey is a tool used by penetration testers, ethical hackers, and SOC teams to test weak configurations and vulnerable network paths, which can be exploited for lateral movement, as well as privilege escalation, credential access, and network discovery. The Monkey finds vulnerable network paths and hosts with a self‑propagating payload, using built‑in exploits to discover and traverse networks. The Monkey is also one of the few tools currently in existence, which evaluates not only against MITRE ATT&CK tactics but also the Zero‑Trust framework. So come join me as we discover the uses for Infection Monkey and set our own Monkey loose to compromise a network of vulnerable hosts.