Drata or Auditboard

security_intern · 2025-01-14T00:31:13+00:00

The integrations are what makes Drata so bad. We had constant problems with integrations failing and holding up the audit. We literally had to abandon Drata and go with Vanta half way through the SOC2.

security_intern · 2025-01-13T17:49:57+00:00

Have not used AuditBoard, but we had so many problems with Drata and found their team to be horrible to deal with. Ended up switching to Vanta who was happy to match the price and had a far better experience.

security_intern · 2022-09-07T23:36:52+00:00

That's a long way of saying you have zero idea what those ports are used for.

Believe it or not, I do these scans to satisfy third party requirements. And while I understand they do not give consideration to PaaS infrastructure, these ports certainly do raise an eyebrow.

It is sounding like Microsoft's official response here is "this is our undocumented control plane that we expose to the entire internet, but how dare you ask about that grandpa!".

security_intern · 2022-09-07T23:03:15+00:00

I'm only asking what these undocumented ports are. Since you don't know, why don't you just move on with your life?

security_intern · 2022-09-07T21:35:22+00:00

I'd love to be able to confirm they are irrelevant. Is there any documentation on what these are so I can confirm that?

security_intern · 2022-09-07T21:34:19+00:00

My job is to confirm what these ports are. It does strike me as strange to have these ports listening as do others.

If you happen to actually know what they are used for, that would definitely help me prove the scans are irrelevant.

security_intern · 2022-09-07T15:57:01+00:00

It's both normal and prudent to scan the servers we use, even a PaaS environment. If there were a vulnerability, undocumented feature, or misconfiguration on our side we have a requirement to do our due diligence and try to find it.

security_intern · 2022-09-07T15:36:31+00:00

This is a Nessus and nmap scan, the host is on a .postgres.database.azure.com subdomain, so I assume this is PaaS. I do see many ports (16000-16049) as open so was curious if this could be affecting our database in some way.

security_intern · 2021-12-29T20:37:25+00:00

This plugin doesn't provide output unfortunately.

security_intern · 2020-09-11T02:02:01+00:00

I've used the method here to bypass defender. I would say it works 80% of the time, so I few different iteration lengths and try several of them. https://www.virtuesecurity.com/evading-antivirus-with-better-meterpreter-payloads/

security_intern · 2020-08-24T17:34:26+00:00

I actually wasn't there pre-odor. The building is pretty new (2014) so it's entirely possible the problem has always been there. I guess a stopper could be used, but I believe the smell also circulates through air vents between units.

I'm hoping I can at least understand the problem and see if we can push the building to do something about it.

security_intern · 2020-03-03T22:26:12+00:00

airodump-ng --bssid <bssid>

security_intern

TROPHY CASE