I'm preparing for an internal penetration test that my company's insurance provider is conducting. Before they arrive, I took several steps to secure our network. Here's what I did: 1) Upgraded all domain and file servers to Windows Server 2025, set the domain and forest function level to 2025, and ensured all servers are fully patched. 2) With my Meraki switches, I enabled DHCP Guard, RA Guard, and DAI and created firewall rules to block LLMNR and NBT-NS traffic. I also verified SMB signing and LDAP channel binding were enabled. 3) I updated the firmware on all Dell servers with iDRAC. 4) Our PCs and servers have an EDR solution that auto-reboots for updates. 5) I configured Ricoh copiers to restrict traffic to only the print server. Given all this, do you think I did enough, or is there more I should add to my checklist?
5 Answers
Be careful not to seesaw between securing for the test and securing for ongoing operations. It’s crucial to have good hygiene practices in place all the time and not just before audits or tests. Maintain a solid baseline of security policies, and ensure your practices are sustainable!
That’s a solid approach. Security is an ongoing process, not just a prep job for a test.
Remember, the point of a pen test isn't to pass or fail—it's to discover vulnerabilities. You'll likely find things that need fixing, and that's totally okay! The important part is to use the findings to improve your defenses. Also, see if there are weaknesses in AD settings or permissions that they can expose.
Absolutely! It’s essential to have ongoing security practices in place, not just scramble for a test.
This! The insights from a good pentest are invaluable for future improvements.
Looks like you've covered some essential bases, but don't forget about user awareness. Phishing is a common way for attackers to gain access. Consider running a mock phishing test as part of your prep! It’s a helpful way to see how users may react under pressure.
Definitely! User behavior can be one of the weakest links in network security.
Great point! Even the best tech can't replace human awareness.
You've got a strong foundation, but be prepared for them to find something unexpected! That's the nature of a good penetration test. They might discover small oversights or configurations that need attention. Just take note and address them step by step after the test is done!
Exactly! It's all part of learning and becoming better at securing your environment.
For real! It’s never about getting a perfect score, it’s improving and securing as you go.
It sounds like you're definitely on the right track! Pen tests are a great way to identify weak spots before they become real issues. Just be ready to address whatever deficiencies they find in their report. Think of it as a way to justify future security expenses for your team. Keep an open mind; this is all about improving your network security!
Exactly, this test can reveal areas you might not have noticed before! It's all about improving your security posture and justifying budgets.
For sure! Seeing a pentest report can sometimes be the push management needs to invest in better tech and security measures.
Exactly! Make it part of your daily routines, not an event-driven activity.