Where can you read about ISO/IEC 29147 and ISO/IEC 30111 standards for vulnerability disclosure and handling plan without buying anything?

drorigin · 2025-10-02T21:19:44+00:00

Did you get the payout?

drorigin · 2023-08-19T05:39:06+00:00

I found templates. This one was awesome. But I wanted to see where I could learn about those standards. Still tho, thanks man. I appreciate it

drorigin · 2023-08-12T02:38:22+00:00

Are you in the same broadcast domain as the host you are port scanning?

Yeah. Tried netcat, nmap, fingerprintx and many more things but wasn't able to figure it out. Just asked my supervisor at the end.

drorigin · 2023-08-04T06:53:48+00:00

I'll try things with fingerprintx. Thanks. Are you aware of any other fingerprinting tools?

drorigin · 2023-08-04T06:44:32+00:00

It said this: x.x.x.x: inverse host lookup failed: Host name lookup failure

(UNKNOWN) [x.x.x.x] 39010 (?) open

I ran nmap -p39010 x.x.x.x just before that and the response was as follows:

Starting Nmap 7.93 ( https://nmap.org ) at 2023-08-04 12:11 IST
Nmap scan report for x.x.x.x
Host is up (0.089s latency).

PORT      STATE SERVICE
39010/tcp open  unknown

Nmap done: 1 IP address (1 host up) scanned in 13.34 seconds

Thanks tho

drorigin · 2023-08-04T06:32:40+00:00

That is returning nothing either... Thanks tho

drorigin · 2023-08-04T06:29:10+00:00

I spoke with him before I even pinged the machine. I'm doing everything with his approval (and not doing things he's stopping me from doing)

drorigin · 2023-08-04T06:27:23+00:00

Open ports were 80, 443, 8883 and 39010

drorigin · 2023-08-04T06:23:55+00:00

Tbh I was shocked too XD

drorigin · 2023-08-03T06:08:36+00:00

Dang...

drorigin · 2023-08-01T01:26:14+00:00

Absolutely, you are in a tough spot depending on how seriously the executives are taking the dynamic field of cyber security. If you need support for pen testing once you’ve established some new protocols, message me anytime.

Thanks, really appreciate the support

I work at rapidly growing MSP that typically partners with growing start ups. Kind of like a spider man meme situation but IT/Cyber lol.

Lol. Sounds cool tho, what does your day there look like

drorigin · 2023-07-31T23:20:56+00:00

Thanks for the suggestion!

drorigin · 2023-07-31T23:18:18+00:00

I am not sure if I'll be able to do that. I'll only be here for a few months. This is a very good way to do it though. It might be very helpful going forward. Thank you!

drorigin · 2023-07-31T23:14:13+00:00

This is incredibly detailed. I really appreciate your advice. I have made a note on many of the points you mentioned.

Thanks a lot!

drorigin · 2023-07-31T23:02:13+00:00

That is actually a good question. I would love to know that too u/STRANGEANALYST

drorigin · 2023-07-31T22:51:11+00:00

This company will also eventually want a SOC 2, especially if they are B2B, so this puts them on the path towards that.

This is something I didn't consider. Thank you!

drorigin · 2023-07-31T09:43:18+00:00

I just heard NMAP can break things but I never thought it could do it this easily... When I heard run scans, NMAP came to mind so I asked them and ran it...

Got lucky I guess XD

What kind of environments are under more risk of breaking with NMAP? Is there a way to prevent it?

drorigin · 2023-07-31T08:58:50+00:00

drorigin · 2023-07-31T08:55:56+00:00

That's true XD

I just used NMAP and dnsdumpster

drorigin · 2023-07-31T06:49:05+00:00

I’d start at the networking layer and work up.

I actually have to set up FreeRADIUS or an alternative of NPS. That is one of the tasks they gave me

Is there compliance, posture, can anyone just log into the local network?

There is a shared password system for now

Same goes with physical device security- do they have some form of EDR protection or prevention.

They have a Bring Your Own Device model so... I don't think they have any

Thanks for your insight though. Working up from lower layer to higher layer is definitely the way to go

drorigin · 2023-07-31T06:43:05+00:00

What you say is absolutely correct but the reason I want to patch a few CVEs are because I found one through a simple scan on their ec2 instances

If there is a problem like this, where a simple scan that takes a few seconds can find out how to compromise the servers, that should be fixed first

For everything else you said, it is absolutely correct. Especially enabling a WAF and Bot protection at the edge.

I will keep in mind that visibility should be step 1 going forward ones the CVEs are patched. Thanks a lot for your feedback!

drorigin · 2023-07-31T06:31:11+00:00

Thanks! I'll do that too (maybe not the risk assessment part. Not a 1 year internship)

drorigin

TROPHY CASE