← Customer 29374466

#23353 5/1 End of Day 00270-2022-001 Web Application Penetration Test

Resolved Created May 2, 2023, 6:22 AM Resolved Sep 27, 2023, 10:53 PM
System (internal) May 2, 2023, 6:22 AM 
Created from Lead: https://artichoke.shield.syncromsp.com/leads/18840540/convert
Check-in (internal) May 2, 2023, 6:22 AM 
Hello,

Testing for 00270-2022-001-WAPT has finished for the day. Below is a quick overview:

Activities Completed Today:

Network mapping and host discovery
Automated vulnerability scanning

Activities Planned for Tomorrow:
Further network mapping and service discovery
Vulnerability enumeration

Roadblocks/Pain Points:

Network has been difficult to map, lots of dropped packets.

Notable Findings:
None

Please let us know if you have any questions or concerns.

Regards,
Emily
customer-reply (internal) May 2, 2023, 6:24 AM 
Correction: subject and text below should have said "Internal Penetration Test" and "IPT", not "Web Application Penetration Test" and "WAPT". Sincerest apologies, it's been a long day.

Regards,
Emily

---------------------------------------------------------------

From: Emily Gosney
Sent: Tuesday, May 2, 2023 1:22 AM
To: Artichoke Support - Peet <[email protected]>; [email protected] <[email protected]>
Cc: Projects <[email protected]>
Subject: 5/1 End of Day 00270-2022-001 Web Application Penetration Test

Hello,

Testing for 00270-2022-001-WAPT has finished for the day. Below is a quick overview:

Activities Completed Today:

Network mapping and host discovery
Automated vulnerability scanning

Activities Planned for Tomorrow:
Further network mapping and service discovery
Vulnerability enumeration

Roadblocks/Pain Points:

Network has been difficult to map, lots of dropped packets.

Notable Findings:
None

Please let us know if you have any questions or concerns.

Regards,
Emily
customer-reply (internal) May 2, 2023, 1:43 PM 
Hello,

We are starting testing for the day. Please let me know if you have any questions or concerns.

Regards,
Emily
Artichoke Support - Peet (internal) May 2, 2023, 4:18 PM 
Just noting that on the dropped packets, that you may want to set up a static ARP for 10.231.198.254 - 00:90:0b:65:99:a3. It's something I did for you on the previous DopBox, but had hoped wasn't necessary.

The only issue though is that if you're running into the problem where the ARP is incorrect for 10.231.198.254, you wouldn't continue to have connectivity to the DropBox. Just a thing to note.

Peet
customer-reply (internal) May 3, 2023, 12:27 AM 
Hello,

Testing for 00270-2022-001-IPT has finished for the day. Below is a quick overview:

Activities Completed Today:

Further network mapping and service discovery
Vulnerability enumeration

Activities Planned for Tomorrow:

Man-in-the-Middle and relay attacks
Report writing

Roadblocks/Pain Points:

None

Notable Findings:
None

Please let us know if you have any questions or concerns.

Regards,
Emily
customer-reply (internal) May 3, 2023, 2:19 PM 
Hello,

We are starting testing for the day. Please let me know if you have any questions or concerns.

Regards,
Emily
customer-reply (internal) May 3, 2023, 9:11 PM 
Hello,

Testing for 00270-2022-001-IPT has concluded. Below is a quick overview:

Activities Completed Today:

Man-in-the-Middle and relay attacks

Started report writing

Roadblocks/Pain Points:

None

Notable Findings:
None

Please let us know if you have any questions or concerns.

Regards,
Emily
[email protected] (internal) Sep 27, 2023, 10:53 PM 
Edits made via Bulk Update Tool - see change log for this timestamp