Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Disabling firewall on an attacked host sounds trivial to detect. Is there any specific reason why wouldn't you deploy meterpreter instead?


A properly configured firewall wouldn't allow anything except, for example, inbound traffic on port 80. If you wanted to start some kind of reverse shell, you would first need a hole in the firewall.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: