WindowSecurity.com Articles & Tutorials Archive

Articles & Tutorials by date (Click here to sort Articles & Tutorials by topic)

2012
[	5	]	January, 2012	[	2	]	February, 2012
2011
[	5	]	January, 2011	[	5	]	February, 2011	[	6	]	March, 2011
[	6	]	April, 2011	[	5	]	May, 2011	[	6	]	June, 2011
[	5	]	July, 2011	[	6	]	August, 2011	[	5	]	September, 2011
[	5	]	October, 2011	[	7	]	November, 2011	[	4	]	December, 2011
2010
[	5	]	January, 2010	[	5	]	February, 2010	[	6	]	March, 2010
[	5	]	April, 2010	[	5	]	May, 2010	[	5	]	June, 2010
[	5	]	July, 2010	[	6	]	August, 2010	[	5	]	September, 2010
[	5	]	October, 2010	[	5	]	November, 2010	[	5	]	December, 2010
2009
[	5	]	January, 2009	[	5	]	February, 2009	[	5	]	March, 2009
[	6	]	April, 2009	[	5	]	May, 2009	[	5	]	June, 2009
[	5	]	July, 2009	[	5	]	August, 2009	[	5	]	September, 2009
[	5	]	October, 2009	[	5	]	November, 2009	[	4	]	December, 2009
2008
[	8	]	January, 2008	[	6	]	February, 2008	[	6	]	March, 2008
[	11	]	April, 2008	[	6	]	May, 2008	[	7	]	June, 2008
[	8	]	July, 2008	[	6	]	August, 2008	[	6	]	September, 2008
[	7	]	October, 2008	[	6	]	November, 2008	[	5	]	December, 2008
2007
[	10	]	January, 2007	[	9	]	February, 2007	[	8	]	March, 2007
[	6	]	April, 2007	[	8	]	May, 2007	[	6	]	June, 2007
[	7	]	July, 2007	[	11	]	August, 2007	[	7	]	September, 2007
[	12	]	October, 2007	[	11	]	November, 2007	[	7	]	December, 2007
2006
[	13	]	January, 2006	[	9	]	February, 2006	[	11	]	March, 2006
[	9	]	April, 2006	[	12	]	May, 2006	[	10	]	June, 2006
[	9	]	July, 2006	[	11	]	August, 2006	[	9	]	September, 2006
[	10	]	October, 2006	[	11	]	November, 2006	[	9	]	December, 2006
2005
[	9	]	January, 2005	[	11	]	February, 2005	[	12	]	March, 2005
[	12	]	April, 2005	[	11	]	May, 2005	[	14	]	June, 2005
[	12	]	July, 2005	[	14	]	August, 2005	[	10	]	September, 2005
[	10	]	October, 2005	[	8	]	November, 2005	[	9	]	December, 2005
2004
[	4	]	January, 2004	[	3	]	February, 2004	[	5	]	March, 2004
[	3	]	April, 2004	[	6	]	May, 2004	[	9	]	June, 2004
[	9	]	July, 2004	[	8	]	August, 2004	[	8	]	September, 2004
[	7	]	October, 2004	[	9	]	November, 2004	[	9	]	December, 2004
2003
[	6	]	January, 2003	[	5	]	February, 2003	[	10	]	March, 2003
[	8	]	April, 2003	[	15	]	May, 2003	[	8	]	June, 2003
[	11	]	July, 2003	[	5	]	August, 2003	[	6	]	September, 2003
[	13	]	October, 2003	[	5	]	November, 2003	[	4	]	December, 2003
2002
[	1	]	March, 2002	[	9	]	April, 2002	[	7	]	June, 2002
[	29	]	July, 2002	[	7	]	August, 2002	[	4	]	September, 2002
[	537	]	October, 2002	[	10	]	November, 2002	[	8	]	December, 2002
2001
[	6	]	February, 2001	[	1	]	May, 2001	[	1	]	October, 2001
2000
[	129	]	February, 2000	[	188	]	April, 2000	[	5	]	September, 2000
[	2	]	December, 2000

Articles & Tutorials for 2010 year

GFI LANguard - Voted WindowSecurity.com Readers’ Choice Award Winner - Network Auditing Software: Date - Dec 23, 2010; Author - The Editor; Section - Site News; GFI LANguard was selected the winner in the Network Auditing Software category of the WindowSecurity.com Readers’ Choice Awards. Admin Report Kit for Windows Enterprise (ARKWE) and Professional Audit Expander were runner-up and second runner-up respectively.
Integrated NAP Functionality in UAG 2010 Service Pack 1 DirectAccess: Date - Dec 22, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; In this article we find the step by step instructions on how to build a UAG SP1 DirectAccess lab with NAP.
Using PowerShell to Continuously Audit Security of Active Directory: Date - Dec 15, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; PowerShell, audit, continuous audit, security, security audits, AD, Active Directory, Commandlets, cmdlets
Are Free/Low Cost Web Apps Secure Enough for Business? - Part 2: Microsoft Office Web Apps and BPOS/Office 365: Date - Dec 08, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; This article discusses the security aspects of Microsoft’s Office Web Applications and online productivity suite.
Collecting Threat Intelligence (Part 1): Date - Dec 01, 2010; Author - Chris Sanders; Section - Articles / Intrusion Detection; This two-part article discusses techniques for collecting publicly available information on obscure IP addresses and domain names that pop up anomalously on your network.
Astaro Security Gateway - Voted WindowSecurity.com Readers’ Choice Award Winner - VPN Software: Date - Nov 25, 2010; Author - The Editor; Section - Site News; Astaro Security Gateway was selected the winner in the VPN Software category of the WindowSecurity.com Readers’ Choice Awards. Checkpoint VPN-1 Power and Barracuda SSL VPN were runner-up and second runner-up respectively.
Managing Biometrics Windows Server 2008 R2: Date - Nov 24, 2010; Author - Deb Shinder; Section - Articles / Windows Server 2008 Security; This article looks at managing Biometric Authentication with Windows 7 and Server 2008 R2.
Desktop anti-virus... what is it good for: Date - Nov 17, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; This article covers additional steps required to secure computers that anti-virus software fails to protect.
Are Free/Low Cost Web Apps Secure Enough for Business? - Part 1: Google Apps: Date - Nov 10, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; In this two-part article, we’ll take a look at web apps from a security point of view.
Group Policy Based Connection Security Rules in Windows Server 2008R2 - Part 1: Server to Server IPsec Security: Date - Nov 03, 2010; Author - Deb Shinder; Section - Articles / Authentication, Access Control & Encryption; Taking a look at some of the basics of the new IPsec Connection Security Rules wizard and how easy it is to get the Connection Security Rules working.
Nessus Security Scanner - Voted WindowSecurity.com Readers’ Choice Award Winner - Security Scanner Software: Date - Oct 28, 2010; Author - The Editor; Section - Site News; Nessus Security Scanner was selected the winner in the Security Scanner Software category of the WindowSecurity.com Readers’ Choice Awards. GFI LANguard and Retina Unified Vulnerability Management were runner-up and second runner-up respectively.
Product Review: VIPRE Enterprise: Date - Oct 27, 2010; Author - Chris Sanders; Section - Articles / Product Reviews; Chris Sanders reviews VIPRE Enterprise.
Network Monitoring with Network Monitor 3.4 (Part 1): Date - Oct 20, 2010; Author - Ricky M. Magalhaes; Section - Articles / Misc Network Security; Discussing Network Monitor 3.4 and its usefulness in troubleshooting as well as in traffic analysis.
Analyzing DLL Hijacking Attacks: Date - Oct 13, 2010; Author - Chris Sanders; Section - Articles / Windows OS Security; Taking a look at the architectural flaws that make DLL hijacking a possibility, how to determine if applications you use are vulnerable, and steps you can take to ensure you aren’t target of this attack.
Setting Effective Security Policies in a Consumerized IT Environment: Date - Oct 06, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; How to set effective security policies in a consumerized IT environment.
ISA Server - Voted WindowSecurity.com Readers’ Choice Award Winner - Firewall Software: Date - Sep 30, 2010; Author - The Editor; Section - Site News; ISA Server was selected the winner in the Firewall Software category of the WindowSecurity.com Readers’ Choice Awards. Astaro Security Gateway Software Appliance and Kerio WinRoute Firewall were runner-up and second runner-up respectively.
Securing Your Migrated Windows 7 Desktop: Date - Sep 22, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; A list of settings with pointers to where you can find full details for implementation of your migrated Windows 7 desktop to make it more secure.
PsExec and the Nasty Things It Can Do: Date - Sep 15, 2010; Author - Chris Sanders; Section - Articles / Misc Network Security; An overview of what PsExec is and what its capabilities are from an administrative standpoint.
DirectAccess versus VPN: They are Not the Same: Date - Sep 08, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; Detailing the differences between DirectAccess and VPN.
How To Protect Against Eves Droppers: Date - Sep 01, 2010; Author - Ricky M. Magalhaes; Section - Articles / Misc Network Security; Since current email communication is clear text, how do we protect against eves droppers?
Security Log Management Tips: Date - Aug 26, 2010; Author - Derek Melber; Section - Articles / Misc Network Security; Some tips and tricks that can be used to better dig the information that you need out of the security log; contributing towards the overall security of your network.
GFI LANguard - Voted WindowSecurity.com Readers’ Choice Award Winner - Patch Management: Date - Aug 25, 2010; Author - The Editor; Section - Site News; GFI LANguard was selected the winner in the Patch Management category of the WindowSecurity.com Readers’ Choice Awards. Ecora Patch Manager and WinINSTALL were runner-up and second runner-up respectively.
Product Review: ObserveIT Remote Access Auditor: Date - Aug 19, 2010; Author - Chris Sanders; Section - Articles / Product Reviews; Chris Sanders reviews ObserveIT’s software package, designed to record and audit remote desktop and Citrix sessions.
Securing Remote Desktop Services in Windows Server 2008 R2: Date - Aug 18, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; Taking a look at the security mechanisms built into RDS; how to use Group Policy and configuration settings for better security.
Analyzing Wireless Network Security at the Packet Level: Date - Aug 11, 2010; Author - Chris Sanders; Section - Articles / Misc Network Security; Useful techniques for troubleshooting wireless security issues at the packet level.
Reasons to Look at Event Viewer in Windows 2008 and Windows 7: Date - Aug 04, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; Taking a deep dive into Event Viewer.
Quest GPOADmin - Voted WindowSecurity.com Readers’ Choice Award Winner -Group Policy Management: Date - Jul 29, 2010; Author - The Editor; Section - Site News; Quest Software's GPOADmin was selected the winner in the Group Policy Management category of the WindowSecurity.com Readers’ Choice Awards. ScriptLogic Active Administrator and NetWrix Group Policy Change Reporter were runner-up and second runner-up respectively.
SEO Poisoning: What it is and what you can do about it: Date - Jul 28, 2010; Author - Deb Shinder; Section - Articles / Web Application Security; How to protect your organization from SEO Poisoning without crippling users’ ability to conduct internet searches.
Dissecting the Pass the Hash Attack: Date - Jul 21, 2010; Author - Chris Sanders; Section - Articles / Misc Network Security; How the Pass the Hash attack technique works and a demonstration of the process that can be used to take stolen password hashes and use them successfully without having to crack their hidden contents.
Attaching Tasks to Event Viewer Logs and Events: Date - Jul 14, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; How to attach tasks to Event Viewer logs and events.
Painless Encryption:Intel Advanced Encryption Standard New Instructions (AES-NI): Date - Jul 07, 2010; Author - Deb Shinder; Section - Articles / Authentication, Access Control & Encryption; Discussing the importance of encryption, taking a deep dive into Intel AES-NI.
Windows 7 Security Primer (Part 3): Date - Jun 30, 2010; Author - Robert J. Shimonski; Section - Articles / Misc Network Security; In this article, we will cover the fundamental information you need to know to secure Windows 7 correctly and some of the lesser known security functionality it provides. We will also look at the many ways you can thwart attack, safeguard your data and recover from attack
Kaspersky Security for Mail Server - Voted WindowSecurity.com Readers’ Choice Award Winner - Email Anti Virus: Date - Jun 24, 2010; Author - The Editor; Section - Site News; Kaspersky Security for Mail Server was selected the winner in the Email Anti Virus category of the WindowSecurity.com Readers’ Choice Awards. BitDefender Antivirus 2010 and Trend Micro InterScan Messaging Security Suite were runner-up and second runner-up respectively.
Group Policy Resource Guide: Date - Jun 16, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; Providing some links and information about tools and resources that exist for free, all pertaining to Group Policy.
Understanding Man-In-The-Middle Attacks - Part 4: SSL Hijacking: Date - Jun 09, 2010; Author - Chris Sanders; Section - Articles / Authentication, Access Control & Encryption; Taking a look at SSL spoofing, discussing some theory behind SSL connections and what makes them in/secure.
Better Security through Sandboxing: Date - Jun 02, 2010; Author - Deb Shinder; Section - Articles / Windows OS Security; Taking a look at popular sandboxing methods and discussing just what sandboxing does and does not accomplish, security-wise.
Windows 7 Security Primer (Part 2): Date - May 27, 2010; Author - Robert J. Shimonski; Section - Articles / Misc Network Security; The fundamental information you need to know to secure Windows 7 correctly, alongside some of the lesser known security functionality it provides.
AccessPatrol - Voted WindowSecurity.com Readers’ Choice Award Winner - Endpoint Security: Date - May 26, 2010; Author - The Editor; Section - Site News; AccessPatrol was selected the winner in the Endpoint Security category of the WindowSecurity.com Readers’ Choice Awards. USB CopyNotify! and GFI EndPointSecurity were runner-up and second runner-up respectively.
Desktops: Local Rights and Privileges: Date - May 19, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; Defining, describing and solving a few of the security issues that seem to confuse desktop users. This article will tackle user rights, local group membership, protecting data and least privileges.
Securing DNS Connections with Windows Server 2008 R2 DNSSEC: Date - May 12, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; A high level overview of DNSSEC and the reasons why securing your DNS infrastructure is important to your organization.
Understanding Man-In-The-Middle Attacks - Part 3: Session Hijacking: Date - May 05, 2010; Author - Chris Sanders; Section - Articles / Authentication, Access Control & Encryption; Taking a look at session hijacking; the theory behind it and a demonstration of it in practice, discussing its detection and prevention tips.
avast! Server edition - Voted WindowSecurity.com Readers’ Choice Award Winner - Anti Virus: Date - Apr 29, 2010; Author - The Editor; Section - Site News; avast! Server edition was selected the winner in the Anti Virus category of the WindowSecurity.com Readers’ Choice Awards. Kaspersky Enterprise Space Security and McAfee VirusScan Enterprise were runner-up and second runner-up respectively.
Netwrix Product Review: Date - Apr 28, 2010; Author - Deb Shinder; Section - Articles / Product Reviews; Deb Shinder reviews NetWrix’s Change Reporter Suite.
Readers' Choice Awards Yearly Round Up 2009: Date - Apr 21, 2010; Author - The Editor; Section - Site News; The winning solutions for the 2009 Readers' Choice awards.
Recognizing IPv6 Address Types on Windows Systems in Support of DirectAccess – Part 2: A Detailed Look at IPv6 Transition Technologies: Date - Apr 14, 2010; Author - Deb Shinder; Section - Network Security Library / Network Security; Taking a look at IPv6 Transition Technologies.
Understanding Man-In-The-Middle Attacks – Part2: DNS Spoofing: Date - Apr 07, 2010; Author - Chris Sanders; Section - Articles / Authentication, Access Control & Encryption; Continuing our look at man-in-the-middle attacks, focusing this time on another type of MITM attack called DNS spoofing.
Windows 7 Security Primer (Part 1): Date - Mar 31, 2010; Author - Robert J. Shimonski; Section - Articles / Misc Network Security; How to secure Windows 7 correctly, covering some lesser known security functionalities that it provides.
AdventNet EventLog Analyzer - Voted WindowSecurity.com Readers’ Choice Award Winner - Event Log Monitoring: Date - Mar 25, 2010; Author - The Editor; Section - Site News; AdventNet EventLog Analyzer was selected the winner in the Event Log Monitoring category of the WindowSecurity.com Readers’ Choice Awards. EventSentry and WebSpy Vantage were runner-up and second runner-up respectively.
Security Compliance Manager Goes Beta: Date - Mar 24, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; What Security Compliance Manger (SCM) is designed to do and what you should expect in the Beta version.
Understanding Man-in-the-Middle Attacks – ARP Cache Poisoning (Part 1): Date - Mar 17, 2010; Author - Chris Sanders; Section - Articles / Authentication, Access Control & Encryption; The first part of an article series on some of the most widely used forms of MITM attacks, including ARP Cache Poisoning, DNS Spoofing, HTTP session hijacking, passing the hash and more.
It’s Time to Get Smart About Smart Phone Security: Date - Mar 10, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; Taking a deep dive into smart phone security.
Quick Guide to Troubleshooting Group Policy Security Settings: Date - Mar 04, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; Some tips on tools, commands, and other tips you can use to try and ensure that your GPOs and their security settings are applying correctly.
Acunetix Web Vulnerability Scanner - Voted WindowSecurity.com Readers’ Choice Award Winner - Web Application Security: Date - Feb 25, 2010; Author - The Editor; Section - Site News; Acunetix Web Vulnerability Scanner was selected the winner in the Web Application Security category of the WindowSecurity.com Readers’ Choice Awards. Defiance Threat Management System and N-Stalker Web Application Security Scanner were runner-up and second runner-up respectively.
Recognizing IPv6 Address Types on Windows Systems in Support of DirectAccess – Part 1: Overview of IPv6 and DirectAccess: Date - Feb 24, 2010; Author - Deb Shinder; Section - Network Security Library / Network Security; Taking a look at the main points of DirectAccess, IPv6, and why the former is dependent on the latter.
Video: Setting up Subscriptions for Event Log Forwarding: Date - Feb 17, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; This video explains the process of setting up subscriptions for Event Log forwarding.
How I Cracked your Windows Password (Part 2): Date - Feb 10, 2010; Author - Chris Sanders; Section - Articles / Authentication, Access Control & Encryption; Going through the process of cracking passwords with different free tolls whilst providing tips for defending your password from being cracked.
Is Internet Explorer Inherently Insecure?: Date - Feb 03, 2010; Author - Deb Shinder; Section - Articles / Authentication, Access Control & Encryption; Taking a look beyond the sensationalized headlines about IE browser security whilst asking whether switching will really keep you safe from attack.
Authenex ASAS - Voted WindowSecurity.com Readers’ Choice Award Winner - Authentication & Smart Cards: Date - Jan 28, 2010; Author - The Editor; Section - Site News; Authenex ASAS was selected the winner in the Authentication & Smart Cards category of the WindowSecurity.com Readers’ Choice Awards. Aladdin eToken and Smart Enterprise Guardian were runner-up and second runner-up respectively.
Configuring Advanced IE Settings Using Group Policy: Date - Jan 27, 2010; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; What is involved in the Advanced Security settings in IE and how best to configure each one.
How I Cracked your Windows Password (Part 1): Date - Jan 20, 2010; Author - Chris Sanders; Section - Articles / Authentication, Access Control & Encryption; How Windows creates and stores password hashes and how those hashes are cracked.
Securing the Intranet in a World of Digital Natives: Date - Jan 13, 2010; Author - Deb Shinder; Section - Articles / Misc Network Security; How securing a network in this new user environment differs from the old model and why it may be beneficial to change some longstanding policies and training methods to adapt to the “natives”.
Product Review: GFI WebMonitor 2009: Date - Jan 06, 2010; Author - Mitch Tulloch; Section - Articles / Product Reviews; This article reviews the capabilities and features of GFI WebMonitor 2009, an integrated Web security, monitoring and Internet access control product from GFI Software.