Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
23.7 Legacy Series
»
Kali Linux Exploit Window Machine
« previous
next »
Print
Pages: [
1
]
Author
Topic: Kali Linux Exploit Window Machine (Read 1833 times)
peterwkc
Full Member
Posts: 112
Karma: 0
Kali Linux Exploit Window Machine
«
on:
January 15, 2024, 01:51:12 pm »
Dear forumers, I would like to seek your opinion whether it is exploitable using kali linux to window machine behind OPNSense firewall.
Because I saw a lot of youtubers show that how easy to exploit MS Window OS.
I know that OPNSENSE is a L3 firewall and have Sensei armor as well.
Please voice out your opinion.
Logged
codera
Newbie
Posts: 5
Karma: 0
Re: Kali Linux Exploit Window Machine
«
Reply #1 on:
January 15, 2024, 01:58:35 pm »
It does not really matter, which firewall are we talking about IMO. Are you exposing Windows servers publically to the internet without any source acl firewall rules, or web application proxy, vpn etc?
If some threat actor can get access inside the network, there are some many ways to exploit servers. In a production network you should separate servers into separate vlan, put some propers rules in place.
«
Last Edit: January 15, 2024, 02:02:43 pm by codera
»
Logged
TrustedComputer
Newbie
Posts: 19
Karma: 1
Re: Kali Linux Exploit Window Machine
«
Reply #2 on:
January 15, 2024, 02:40:35 pm »
Of course, windows is very exploitable in general. This is not news. The issue is how you protect it. Your internal machines should never be reachable from the internet. That's something any firewall can accomplish, when properly configured, including opnsense, like codera said. You need to set up the correct rules to prevent inbound connections and avoid using technologies that bypass them like port forwarding, pinholes, upnp, cloud based remote access, etc.
Logged
peterwkc
Full Member
Posts: 112
Karma: 0
Re: Kali Linux Exploit Window Machine
«
Reply #3 on:
January 15, 2024, 04:32:49 pm »
Let me repharse my questions again.
I have OPNSense firewall who protect the MS Window OS. No upnp, open port to SSH. Does it secure in this sense?
Logged
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1601
Karma: 176
Re: Kali Linux Exploit Window Machine
«
Reply #4 on:
January 15, 2024, 09:09:53 pm »
If the SSH implementation on your Windows OS is safe and properly configured, and you are using public key authentication, yes it is safe.
Any service you expose to the internet needs to be safe, a firewall can only accept or deny access to that service. Higher OSI Layer features that intercept traffic to apply virtual patches (WAF) or just drop traffic they find suspicious (DPI or IDS/IPS) can only mitigate risks.
The exposed application needs to be hard to exploit and always patched up to date.
Logged
Hardware:
DEC740
peterwkc
Full Member
Posts: 112
Karma: 0
Re: Kali Linux Exploit Window Machine
«
Reply #5 on:
January 16, 2024, 09:32:26 am »
I don't believe SSH implementation. There is back door created by....
Logged
Patrick M. Hausen
Hero Member
Posts: 6810
Karma: 572
Re: Kali Linux Exploit Window Machine
«
Reply #6 on:
January 16, 2024, 09:35:12 am »
Quote from: peterwkc on January 16, 2024, 09:32:26 am
I don't believe SSH implementation. There is back door created by....
Then do not open SSH to the Internet.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
peterwkc
Full Member
Posts: 112
Karma: 0
Re: Kali Linux Exploit Window Machine
«
Reply #7 on:
January 16, 2024, 09:26:03 pm »
How to do pen test against the OPNSense firewall using Kali Linux? Any direction/guide should be good..
Logged
Patrick M. Hausen
Hero Member
Posts: 6810
Karma: 572
Re: Kali Linux Exploit Window Machine
«
Reply #8 on:
January 16, 2024, 09:34:17 pm »
If you don't open any ports on WAN there isn't much to test ... closed is closed.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
23.7 Legacy Series
»
Kali Linux Exploit Window Machine