all InfoSec news
Sandman - NTP Based Backdoor For Red Team Engagements In Hardened Networks
Oct. 28, 2022, 11:30 a.m. | noreply@blogger.com (Unknown)
KitPloit - PenTest Tools! www.kitploit.com
Sandman is a backdoor that is meant to work on hardened networks during red team engagements.
Sandman works as a stager and leverages NTP (a protocol to sync time & date) to get and run an arbitrary shellcode from a pre-defined server.
Since NTP is a protocol that is overlooked by many defenders resulting in wide network accessibility.
Usage
SandmanServer (Usage)
Run on windows / *nix machine:
python3 sandman_server.py "Network Adapter" "Payload Url" "optional: ip to spoof"
-
Network Adapter: The …
backdoor csharp cybersecurity infosec networks ntp python red team redteam red team tools sandman team windows
More from www.kitploit.com / KitPloit - PenTest Tools!
Jobs in InfoSec / Cybersecurity
Head of Security Operations
@ Canonical Ltd. | Home based - Americas, EMEA
Security Specialist
@ Lely | Maassluis, Netherlands
Senior Cyber Incident Response (Hybrid)
@ SmartDev | Cầu Giấy, Vietnam
Sr Security Engineer - Colombia
@ Nubank | Colombia, Bogota
Security Engineer, Investigations - i3
@ Meta | Menlo Park, CA | Washington, DC | Remote, US
Cyber Security Engineer
@ ASSYSTEM | Bridgwater, United Kingdom