Legacy Attack Surface in the Modern Enterprise

May 26, 2021

With a heavy focus on monitoring, host based detection and attack prevention, much of a legacy attack surface still remains. MitM attacks utilizing ARP spoofing or rouge DHCP servers to mention a few are well known but are often overlooked in network configurations. Transport encryption can save you in some instances, but as we know older infrastructure usually houses cleartext protocols and in some cases encryption can be downgraded or stripped. Modern tooling also makes these attacks more stable than in years past adding to its viability.