A misconfiguration is identified in the VLAN configuration. Users in the guest WiFi can access internal systems.
Handle the vulnerability by answering the key questions:
- What happened?
- What is the cause?
- What has been affected?
- What is the (possible) damage?
- Which short term and long term measures should be implemented?
Objective: Understand and contain issue(s) without any pushes to production
You can use any technology you want (ideally ones you have experience with) and any Group Security team size. * Describe what you would do and how you would act (ideally in diagram format). * Who would you talk to? * What actions would you take to contain and remediate the issue(s)?
Resources and Technologies available:
- Techops, Webops, and Dev teams
- Slack, Jira, Confluence, ELK, Grafana, Nagios, Akamai, AWS, Cisco Firewalls, Landeks, and DarkTrace
Back to all challenges