Credentials Are the New Exploits: How to Effectively Use Credentials in Penetration Tests

Credentials have become the number one attack methodology, according to the Verizon Data Breach Investigations Report. Mirroring the increased use of stolen credentials by attackers, 59% of penetration testers focus more than half of their security assessments on credentials versus exploits, according to a 2014 survey. The biggest challenge often rests in effectively managing the large number of passwords, hashes, and SSH keys.

In this webinar, participants will learn about:

• Trends that cause attackers to increasingly use credentials
• The ways attackers obtain credentials and move across the network
• Techniques penetration testers use to simulate credential abuse
• Efficient new ways to manage and reuse credentials with Metasploit Pro

The webcast will contain a presentation and a demo. 

Speaker Information

Christian Kirsch has 17 years of security industry experience, with expertise in security assessments, cryptography, and incident detection and response. Chris is a principal product marketing manager at Rapid7 in Boston, Massachusetts. Previously, he held positions at Thales e-Security and PGP Corporation, now part of Symantec.