topic Re: Does HarmonyEndpoint use any type of mitigation/protection for devices that use credential snagg in Endpoint https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199169#M7820 <P>That's right</P> Tue, 28 Nov 2023 15:10:33 GMT DiegoFretes 2023-11-28T15:10:33Z Does HarmonyEndpoint use any type of mitigation/protection for devices that use credential snagging? https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199058#M7818 <P>Does Harmony Endpoint use any type of mitigation/protection for devices that use credential snagging?</P><P>&nbsp;</P><P>. This technique is performed using devices such as Raspberry Zero.<BR /><BR />More information about the device and the technique.</P><P>&nbsp;</P><P><A href="https://zone13.io/post/Raspberry-Pi-Zero-for-credential-snagging/" target="_blank" rel="noopener">https://zone13.io/post/Raspberry-Pi-Zero-for-credential-snagging/</A></P><P><A href="https://gist.github.com/milo2012/1c638b19b61c1338e21bad23705ff8fb" target="_blank" rel="noopener">https://gist.github.com/milo2012/1c638b19b61c1338e21bad23705ff8fb</A></P><P><A href="https://medium.com/codex/raspberry-pi-zero-password-thief-cb2bea8d6dc0" target="_blank" rel="noopener">https://medium.com/codex/raspberry-pi-zero-password-thief-cb2bea8d6dc0</A></P><P><A href="https://www.reddit.com/r/netsecstudents/comments/mz4qbz/using_a_raspberry_pi_zero_as_a_physical_pentest/" target="_blank" rel="noopener">https://www.reddit.com/r/netsecstudents/comments/mz4qbz/using_a_raspberry_pi_zero_as_a_physical_pentest/</A></P><P>&nbsp;</P><P>&nbsp;</P> Mon, 27 Nov 2023 18:15:58 GMT https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199058#M7818 DiegoFretes 2023-11-27T18:15:58Z Re: Does HarmonyEndpoint use any type of mitigation/protection for devices that use credential snagg https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199168#M7819 <P>If I'm understanding this correctly, this is capturing password hashes sent on the wire, correct?</P> Tue, 28 Nov 2023 15:07:24 GMT https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199168#M7819 PhoneBoy 2023-11-28T15:07:24Z Re: Does HarmonyEndpoint use any type of mitigation/protection for devices that use credential snagg https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199169#M7820 <P>That's right</P> Tue, 28 Nov 2023 15:10:33 GMT https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199169#M7820 DiegoFretes 2023-11-28T15:10:33Z Re: Does HarmonyEndpoint use any type of mitigation/protection for devices that use credential snagg https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199176#M7821 <P>As I recall there were some general mitigation advice available for similar i.e.</P> <P>- Port protection solutions ( HEP has MEPP )</P> <P>- WPAD settings hardening via GPO or similar</P> Tue, 28 Nov 2023 15:31:56 GMT https://community.checkpoint.com/t5/Endpoint/Does-HarmonyEndpoint-use-any-type-of-mitigation-protection-for/m-p/199176#M7821 Chris_Atkinson 2023-11-28T15:31:56Z