- Articles
- Authors
- Blogs
- ISA Server Articles
- Links
- Message Boards
- Newsletter
- RSS
- Security Tests
- Services
- Software
- White Papers
Network Security Library
Network Security Library / Windows Security
- Windows Enumeration: USER2SID & SID2USER
- Date - Jan 18, 2006
- User2sid and Sid2user are two small utilities for Windows NT, created by Evgenii Rudny, that allow the administrator to query the SAM to find out a SID value for a given account name and vice versa. User2sid.exe can retrieve a SID from the SAM (Security Accounts Manager) from the local or a remote machine and Sid2user.exe can then be used to retrieve the names of all the user accounts and more. These utilities do not exploit a bug but call the functions; LookupAccountName and LookupAccountSid respectively. These tools can be called against a remote machine without providing logon credentials except those needed for a null session connection. These tools rely on the ability to create a null session in order to work.
- The Threats and Countermeasures Guide v2.0
- Date - Jan 11, 2006
- The updated Threats and Countermeasures guide provides you with a reference to all security settings that provide countermeasures for specific threats against current versions of the Microsoft Windows operating systems.
- Windows 2000 DMZ Design.
- Date - Oct 03, 2003
- In this chapter you learn about Windows 2000 security but only as it relates to this subject matter. In other words, this chapter is not a general Windows 2000 security chapter, but rather is one customized to fit the needs of designing security within the DMZ. Of course, the chapter covers many security topics revolving around Windows 2000, but all the content will be tailored for the most part to security administrators working within a DMZ environment.
- Windows 2000 allows unauthorized users to get administrator rights on computer
- Date - Apr 07, 2003
- This article describes a security flaw which allows unauthorized users to get administrator rights on computers that are running Microsoft Windows 2000 operating system.
- DBCC SHOWTABLEAFFINITY Buffer Overrun
- Date - Jan 29, 2003
- This article documents the process of finding and exploiting buffer overrun bugs in many versions of Microsoft's SQL server.
- IP Security for Microsoft Windows 2000 Server
- Date - Nov 10, 2002
- MS Windows 2000 TCP/IP Implementation Details
- Date - Oct 16, 2002
- Perfect description! IP tuning, security settings, IPsec, etc. Ex: how to enable SynAttackProtect feature.
- Hardening Windows NT Against Attack
- Date - Oct 16, 2002
- Establishing appropriate security policies and procedures is the best way to harden your system.
- Security part from the Windows NT FAQ
- Date - Oct 16, 2002
- Several interesting Q&A.
- Network Strategy Report: Windows NT Security
- Date - Oct 16, 2002
- Nice paper. You can find some useful information there.
- Windows NT and IIS Security Issues
- Date - Oct 16, 2002
- The part from a book "Designing & Implementing Microsoft Internet Information Server"
- Windows NT Security FAQ
- Date - Oct 16, 2002
- Great title, but nothing included, just some recommendations :(
- How to secure your WinGate installation from abuse
- Date - Oct 16, 2002
- Step by step advice
- NT's Top Security Problems
- Date - Oct 16, 2002
- It is not big too but you can fid here some new things
- How to Secure Your NT-UNIX Network
- Date - Oct 16, 2002
- Small paper about most known vulnerabilities
- An Intro to Windows NT Security
- Date - Oct 16, 2002
- You can't find here any practical recomendations, but theoretical ones are good
- Windows NT Security, Part 2
- Date - Oct 16, 2002
- Discover how NT security works
- Windows NT Security, Part 1
- Date - Oct 16, 2002
- Understand the mechanisms of NT's robust security system
- Steps for Evaluating the Security of a Windows NT Installation
- Date - Oct 16, 2002
- Well... you can try to conform to this rules
- General Firewall White Paper
- Date - Oct 16, 2002
- Nice description of common firewall functions
- Securing Windows NT Installation
- Date - Oct 16, 2002
- By Microsoft Corporation! 1997 but for C2-compliant System :)
- The Windows NT WARDOC: A Study in Remote NT Penetration
- Date - Oct 16, 2002
- Some parts of this DOC were published in "The MH DeskReference" (also by Rhino9)
- NT Security - Frequently Asked Questions version 0.41
- Date - Oct 16, 2002
- Good FAQ but... only 1997...:(
- Cracking NT Passwords
- Date - Oct 16, 2002
- Article from Phrack with source code
- Win95 Networking FAQ - TCP/IP (Internet)
- Date - Oct 16, 2002
- Very helpful document
- HP-UX Security Guide
- Date - Oct 16, 2002
- HP-UX 9.07 version security.
- NT4 Intrusion and Security
- Date - Oct 15, 2002
- Some ways to hack and secure your system.
- Armoring NT
- Date - Oct 15, 2002
- This article presents a systematic method to prepare for a firewall installation, specifically Check Point Firewall 1.
- Leveraging Security Features in Windows 2000 for Exchange
- Date - Sep 03, 2000
- Microsoft FrontPage 2000 Server Extensions Security
- Date - Sep 03, 2000
- Adding New Services to the Windows NT Kernel
- Date - Apr 13, 2000
- Building a Windows NT Bastion Host in Practice
- Date - Apr 13, 2000
- A *REAL* NT Rootkit, patching the NT Kernel
- Date - Apr 12, 2000
- A Comparison of the Security of Windows NT and UNIX
- Date - Feb 21, 2000
- Analysis of the Security of Windows NT
- Date - Feb 21, 2000
- Navy Secure Windows NT 4.0 Installation and Configuration Guide Addendum
- Date - Feb 21, 2000
- Navy Secure Windows NT 4.0 Installation and Configuration Guide
- Date - Feb 21, 2000
- Ensuring Password Quality on NT Networks
- Date - Feb 21, 2000
Network Security Library topic
| [ | 26 | ] | Anti Spam | [ | 12 | ] | Anti Virus | [ | 44 | ] | Auditing |
| [ | 60 | ] | Auth. & Access Control | [ | 3 | ] | Content Management | [ | 103 | ] | Cryptography |
| [ | 12 | ] | Disaster Recovery | [ | 36 | ] | Firewalls & VPN's | [ | 6 | ] | Forensics |
| [ | 41 | ] | Harmless hacking book | [ | 1 | ] | Honeypots | [ | 14 | ] | Information Warfare |
| [ | 26 | ] | Intrusion Detection | [ | 7 | ] | Law | [ | 3 | ] | Managed Security Solutions |
| [ | 50 | ] | Misc | [ | 24 | ] | Mobile Code | [ | 32 | ] | NCSC&DoD Rainbow series |
| [ | 13 | ] | NetWare | [ | 31 | ] | Network Security | [ | 4 | ] | Patch Management |
| [ | 3 | ] | Phishing | [ | 38 | ] | Policy & Standards | [ | 25 | ] | Privacy |
| [ | 21 | ] | Software Engineering | [ | 2 | ] | Trojans | [ | 2 | ] | Underground |
| [ | 82 | ] | Unix Security | [ | 19 | ] | Web Security | [ | 39 | ] | Windows Security |
| [ | 6 | ] | Wireless Security |
Featured Links*
Become a WindowSecurity.com member!
Discuss your security issues with thousands of other network security experts. Click here to join!