unencrypted backups No backup failure alerts inappropriate unconstrained delegation in Active Directory Individual user permissions in shares No MFA on 365 Admin SMB signing not enabled No drive encryption Inapproprite Firewall rules (not RDP) Default SNMP Write value cpassword Bypass users in DUO insecure zone transfers password complexity not enforced Insecure share with PII/PHI Computers not joined to AD (or AAD) Default admin credentials min password length < 12 characters untrained clickers Adobe Flash LLMNR enabled Segmentation without ACLs No SPF record >20% phish click rate unauthenticated mail relay Users are local admins Telnet Plain text password discovered in share unencrypted web management interface VM without autostart Windows 7 compliance violation PCI violation EDR Missing on endpoint Unpatched Exchange rogue device VPN with weak encryption No redundant ISP Whitelisted domains in email filter password spreadsheet Winlogon cache default value "Domain Users" group as local administrator Windows Server 2003/2008 critically out-of- date firmware LM Hash on admin NIPS disabled /unconfigured Windows XP Stale users older than 1year Teamviewer / VNC No botnet filter Application with > 1000 vulnerabilities No DKIM / DMARC DNS logging not enabled No Geo-IP blocking Wireless PSK older than 2 years Unlicensed hardware or software No DMZ (where appropriate) Guest SSID but no guest isolation End user Passwords that never expire GPO with insecure settings legacy configuration not removed unencrypted backups No backup failure alerts inappropriate unconstrained delegation in Active Directory Individual user permissions in shares No MFA on 365 Admin SMB signing not enabled No drive encryption Inapproprite Firewall rules (not RDP) Default SNMP Write value cpassword Bypass users in DUO insecure zone transfers password complexity not enforced Insecure share with PII/PHI Computers not joined to AD (or AAD) Default admin credentials min password length < 12 characters untrained clickers Adobe Flash LLMNR enabled Segmentation without ACLs No SPF record >20% phish click rate unauthenticated mail relay Users are local admins Telnet Plain text password discovered in share unencrypted web management interface VM without autostart Windows 7 compliance violation PCI violation EDR Missing on endpoint Unpatched Exchange rogue device VPN with weak encryption No redundant ISP Whitelisted domains in email filter password spreadsheet Winlogon cache default value "Domain Users" group as local administrator Windows Server 2003/2008 critically out-of- date firmware LM Hash on admin NIPS disabled /unconfigured Windows XP Stale users older than 1year Teamviewer / VNC No botnet filter Application with > 1000 vulnerabilities No DKIM / DMARC DNS logging not enabled No Geo-IP blocking Wireless PSK older than 2 years Unlicensed hardware or software No DMZ (where appropriate) Guest SSID but no guest isolation End user Passwords that never expire GPO with insecure settings legacy configuration not removed
(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.
unencrypted backups
No backup
failure alerts
inappropriate unconstrained delegation in Active Directory
Individual user permissions in shares
No MFA on
365 Admin
SMB signing
not enabled
No drive encryption
Inapproprite Firewall rules (not RDP)
Default SNMP Write value
cpassword
Bypass users in DUO
insecure zone transfers
password complexity not enforced
Insecure share with PII/PHI
Computers
not
joined to
AD (or AAD)
Default admin credentials
min password length < 12 characters
untrained clickers
Adobe Flash
LLMNR enabled
Segmentation without ACLs
No SPF record
>20% phish click rate
unauthenticated
mail relay
Users are local admins
Telnet
Plain text password discovered in share
unencrypted web management interface
VM without autostart
Windows 7
compliance violation
PCI violation
EDR
Missing on endpoint
Unpatched Exchange
rogue device
VPN with weak encryption
No redundant ISP
Whitelisted domains in email filter
password spreadsheet
Winlogon cache default value
"Domain Users" group as local administrator
Windows Server 2003/2008
critically out-of-date firmware
LM Hash on admin
NIPS
disabled
/unconfigured
Windows XP
Stale users older than 1year
Teamviewer / VNC
No botnet
filter
Application
with > 1000 vulnerabilities
No DKIM / DMARC
DNS logging not enabled
No Geo-IP blocking
Wireless PSK older than 2 years
Unlicensed
hardware or software
No DMZ
(where appropriate)
Guest SSID but no guest isolation
End user
Passwords that never expire
GPO with insecure settings
legacy configuration
not removed