Internal Penetration Testing

 An internal penetration test emulates the role of an attacker from inside the network. A Whitehat hacker will scan the network to identify potential vulnerabilities. The Whitehat will also perform common and advanced internal network attacks, such as: LLMNR/NBT-NS poisoning and other man- in-the-middle attacks, token impersonation, kerberoasting, pass-the-hash, golden ticket, and more. The whitehat hacker will seek to gain access to hosts through lateral movement, compromise domain user and admin accounts, and extract sensitive data. 

All testing performed is based on the NIST SP 800-115 Technical Guide to Information Security Testing and Assessment, OWASP Testing Guide (v4), and customized testing frameworks.