When Networking Doesn't Work
ATT&CK techniques detected
T1557.001Name Resolution Poisoning and SMB Relay
66%
"host and guess what, the tso software worked fine as well. all my attempts to disable windows firewalls and such on the windows hosts made zero difference. in desperation, i ran wireshark on the windows 11 system and established that yes, there is outgoing udp traffic ( to port 6…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1557.001Name Resolution Poisoning and SMB Relay
57%
"the network traffic flows through the various windows networking software layers. in a text log file produced by pktmon, i found an important clue : dropreason inet : checksum is invalid the udp packet was received and moved up from the network interface through a few filter laye…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1040Network Sniffing
50%
"##dc ) either wasn ’ t receiving or sending. i have had all kinds of trouble with similar old ipmi devices in the past, and i have no reason to think that the tyan ipmi implementation is particularly solid. but that was not the problem in this case. wireshark showed me that the r…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1040Network Sniffing
30%
"host and guess what, the tso software worked fine as well. all my attempts to disable windows firewalls and such on the windows hosts made zero difference. in desperation, i ran wireshark on the windows 11 system and established that yes, there is outgoing udp traffic ( to port 6…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…