0

Windows System Security Part I

Posted October 22nd, 2011. Filed under DotCom Security Stuff Tutoriale

The fundamentals to Windows System Security. This video will cover:

Account Management: NET USER / NET SESSION / GPEDIT.MSC

Adding Accounts
Deleting Accounts
Modifying Accounts
Viewing Account Settings
Enforcing Account Settings through Group Policy

Service Management: SERVICES.MSC / SC QUERY

Starting Services
Stopping Services
Configuring Services
Identifying Insecure Services (Telnet/FTP)
Secure Alternatives

Process Management: TASKMGR / TASKLIST / TASKKILL / WMIC PROCESS LIST FULL

Viewing Processes
Forcing Processes to Stop
Killing Specific Processes (Malware)
Starting Processes

Group Policy Security: GPEDIT.MSC / GPUPDATE

Audit Policy
User Rights Assignment
Security Options
Account Policies (Covered in Account Management)

Inspecting Your System:MSCONFIG / NETSTAT / NET VIEW / NET SHARE

Tips and Tricks for looking for Malware
Identifying Compromise
Viewing open shares/connections
Creating and Destroying shares

Next Video Information: NETSH ROUTING IP / CACLS / EventVwr.msc / 3rd Party Tools

Applying Packet Filters through NetSH
File Permissions with CACLS
Configuring Client Side Browsers
Sysinternals and other 3rd party tools
Logs and EventViewer

(c) Devon Greene

Leave a Comment





Powered by HaxTor | CopyWrong © 2011