-
Notifications
You must be signed in to change notification settings - Fork 2
Audit shares
simondotsh edited this page Oct 27, 2021
·
1 revision
Auditing shares simply reports if network shares are readable by the user. It can be seen as the light version of the module.
Credentials found in network shares is an easy vector for malicious actors to elevate their privileges, often allowing to pivot further in the domain.
Please do not ever store credentials in a share.
By eliminating the most amount of shares readable by low-privileged domain users, it is less likely for an actor to stumble upon privileged credentials unknowingly left accessible by all.