First, Slitheris is a great tool. I have been able to get a lot of companies to buy it after they see me using it.
However on one of my latest projects, I was wondering about something. What firewall exeptions would I have to set to allow Slitheris to scan different VLAN?
I use Slitheris a lot to scan the network, but that means I have to connect my laptop to multiple VLAN and keep switching the port.
Instead of doing this from the switch closet I would like to do it from a station, and enable a firewall rule that allows the scanning from that station (firewall rule on the gateway connecting the VLAN, not on the computers).
These types of network are getting more common for me, as I have been doing lots of deployments with air gap, and ZTNA.
Interesting enough, the more complicated the network becomes, the more Slitheris shines.
So I was planning to have a firewall rule that I can enable while running the scan, but I wanted to keep it as tight as possible, mainly as some of the networks are following CMMC compliance (NIST 800-171/172).
On a separate note, it is funny (as technical funny) to watch CrowdStrike freak out while Slitheris is running scans