Penetration Testing
Comprehensive security assessment of SS7, Diameter, GTP, and 5G infrastructure following GSMA guidelines.
Enumeration
Escalation
movement
Domain Controllers
AD core security
User Accounts
weak credentials & misconfigurations
Group Policies (GPOs)
Security Misconfigurations
Kerberos Authentication
Ticket attacks & weaknesses
LDAP Services
Directory exposure
Privilege Levels
Admin rights abuse
Trust Relationships
Inter-domain security
Password Policies
Strength & enforcement
Enumeration
Collecting AD information like users, groups, and domains.
Tools
BloodHound, PowerView, enum4linux
Credential Attacks
Testing password strength and reuse (spraying, brute force).
Tools
Hydra, Kerbrute, CrackMapExec
Privilege Escalation
Identifying and exploiting misconfigurations to gain higher access.
Tools
BloodHound, SharpHound, Mimikatz
Lateral Movement
Moving between systems inside the domain after initial access.
Tools
PsExec, WinRM, Evil-WinRM, CrackMapExec
Reporting
Documenting findings, attack paths, and remediation steps.
Tools
Dradis, Serpico, Jira, Markdown/Excel