Cryptanalysis of the Random Number Generator of the Windows
The pseudo-random number generator (PRNG) used by the Windows operating system is the most commonly used PRNG. The pseudo-randomness of the output of this generator is crucial for the security of almost any application running in Windows. Nevertheless, its exact algorithm was never published.
Read the Article
|
Reset the Windows 2000 or Windows 2003 Active Directory Administrator Account
Active Directory passwords, on the other hand, are stored in an LDAP database hosted only on Domain Controllers. Physical, raw access to the partitions of the Domain Controller do not allow reading or modification of the data stored in this database. There is, in fact, no way to interface with the records inside the database unless it is running under the authority of the Windows domain system.
Read the Article
|
Lab Rats - Windows Vista Preview16 min 29 sec
Lab Rats discuss the pros and cons of Microsofts' new Windows Vista.
Watch the Video
|
Unified Identity Management
Microsoft's new Windows project, code named Longhorn, is supposed to bring many improvements to the enterprise. Not the least of which is better overall security. But possibly the most interesting development is Microsoft's recent announcement about changes to Active Directory. These changes not only impact how user authentication and authorization are handled in your network. They also impact how you protect yourself on the Internet through the use of what Microsoft calls the Identity Metasystem.
Read the Article
|
Top 10 Mistakes on Windows Internal Networks
In this paper I aim to highlight ten common mistakes on Windows systems, which make the job of a disgruntled employee or a malicious attacker who manages to get past your firewall, far easier. All of the mistakes are in relation to Microsoft Windows operating systems, as my past experience at conducting internal network assessments, has shown me that the easiest way for an attacker to get onto any internal network is via these high-risk Microsoft Windows vulnerabilities.
Read the Article
|
Discretionary Access Control Knowledge: a Practical System
This paper offers a new solution for administrators to reduce abuse of access controls and simplify permissions management. The end-user's abuse of access controls is a threat to network resources. The poorly configured permissions by the administrator produce a vulnerability. The countermeasure is knowledge and efficient techniques.
Read the Article
|
Securing the Internal Network
The goal of this document is to define new guidelines in order to improve the security in Microsoft Windows-based internal networks. In order to be useful in real situations, these measures have been thought in function of obtaining the lowest-cost possible approach, to prevent such a project to become financially prohibitive. Security being a field in constant evolution, it is possible that new solutions will be integrated to these presented here in the future.
Read the Article
|
Concepts for the Stealth Windows Rootkit
A draft paper I wrote some time ago, which presents some idea (and only idea) of how it could be possible to write a really stealth windows rootkit (i.e. the one which would not be detected by klister-like tools)
Read the Article
|
Tips to fixing Windows network problems
Although Windows ME advertises itself as offering free and easy home networking, many real-world users are finding this a difficult-to-realize reality. It has been my experience, working with hundreds of Windows ME networks, that there are certain steps that may be needed. Microsoft may consider some of those steps unconventional. Sometimes nobody understands why a problem existed in the first place; some of these steps are equivalent to kicking a jukebox to make it work, without the resulting physical damage that actual kicking has the potential to cause.
Read the Article
|
NTFS Security Considerations
The New Technology File System was introduced with Windows NT to address security problem. With NTFS, files, directories and windows can each have their own security. This allows a great deal of flexibility in setting up a network. Microsoft recommends that all network shares be established using the NTFS file system. This paper has its origins in two events - a spate of papers that compare FAT and NTFS and a personal attempt to describe the security points of NTFS.
Read the Article
|
