Social engineering instead of prologue.
Telegram channel: https://t.me/protectioninformation
Telegram Group: https://t.me/informationprotection1
Website: https://legascom.ru
Email: online@legascom.ru
Before discussing the technical aspects of information security, it would be useful to consider some issues related to social engineering. In particular, let's look at what information about the network of their potential victim an attacker can glean from open sources, without resorting to any special tools and malicious software.
Any corporate network typically uses a wide variety of devices and applications. Active network equipment (Cisco, DLink, Huawei), operating systems (Windows, various Linux and Unix), web servers (Apache, IIS, WebSphere), database management systems (MSSQL, MySQL, Oracle) and other software products - all this can be found in a corporate network, even of medium size. A separate line includes information security tools: antiviruses, firewalls, intrusion detection systems. Of course, a system administrator should always know his network well (although in practice this is often not the case).
But it is not necessary or even highly undesirable for potential attackers to know what is being used on the network.