HD Moore to Demonstrate How Attackers Map Networks

HD Moore, creator of the Metasploit framework and CEO of runZero, will lead a live webinar that demonstrates how attackers map networks and find segmentation gaps across IT, IoT and OT environments. The online session is presented by runZero and requires registration; a recording will be sent to registrants.

The presentation will compare an attacker’s operational view of a network with the static asset inventories many organizations keep. Moore will show examples in which devices bridge zones, respond on unexpected segments or sit behind industrial protocol gateways that standard scanners do not detect. Those devices and connections are often absent from formal asset lists but available on the network pathways attackers use.

Webinar materials state that zero-day vulnerabilities continue to appear and that automated tools can produce exploits faster than patches are applied. The session will therefore emphasize mapping what a compromised device can reach, rather than attempting to block every possible vulnerability.

Planned demonstrations include methods for discovering unsanctioned IT and shadow IoT devices, locating multi-homed equipment that connects separate zones, and revealing assets routed around expected controls. Moore will show how to convert static inventories into dynamic attack-path maps that trace how one compromised host can lead to others.

Organizers say the mapping will identify specific devices and network links that shorten an attacker’s route to high-value targets, and that teams can use those maps to prioritize changes that reduce exposure. The webinar will present scenarios across corporate networks and factory floors and address failures that occur where IT, IoT and OT environments overlap.

The session is part of runZero’s events calendar. Registration details and the option to receive a recording are available from the presenter.