Category Archives: microsoft

Microsoft & UEFI Secure Boot

Posted on 31-Oct-2011 by .

A technical solution has finally been proposed to avoid locking out Linux and other OS vendors from UEFI shipped motherboards. A couple of months ago Microsoft made waves by announcing their Windows 8 support for UEFI. Open source supports took … Continue reading →

Posted in hardware & software, linux, microsoft, news, security | Tagged linux, microsoft, uefi | Leave a comment

wtf

Posted on 13-Aug-2011 by .

Posted in apple, hardware & software, malware, microsoft | Tagged anti-virus, apple, vmware | Leave a comment

Microsoft: Sex, Lies……and cybercrime?

Posted on 26-Jun-2011 by .

Microsoft also recently released an eye catching paper aptly named that discusses the validity of security reports. Far from being broadly-based estimates of losses across the population, the cyber-crime estimates that we have appear to be largely the answers of … Continue reading →

Posted in microsoft, news | Tagged report | Leave a comment

Latest Microsoft Security Report

Posted on 25-Jun-2011 by .

Microsoft’s Security Intelligent Report (SIR) v10 has been released and can be found here. The key highlights from Microsoft’s own Roger Halbheer: Industry vulnerability disclosure trends continue an overall trend of moderate declines since 2006. This trend is likely because … Continue reading →

Posted in microsoft, news, security | Tagged report | Leave a comment

Microsoft’s DEP, ASLR: Can’t have one without the other…

Posted on 16-Dec-2010 by .

There’s an interesting series on the Microsoft Security Research & Defense blog covering ASLR and DEP memory protections found in Windows XP SP3+. DEP effectiveness (without ASLR) Summary: DEP breaks exploitation techniques that attackers have traditionally relied upon, but DEP … Continue reading →

Posted in microsoft, security | Leave a comment

win32 memory capture & analysis cheat sheet

Posted on 14-Jun-2010 by .

A high level overview to perform live memory captures and analysis: capture memory via moonsol’s win32dd parse memory snapshot with mandiant’s memoryze analyze results via audit viewer or analyze using the volatility framework — neatly packaged in SAN’S Sift Workstation

Posted in forensics, malware, microsoft, pentest, security | Tagged ir, tools | Leave a comment

Windows Anti Forensics Tip of the Day…

Posted on 11-Nov-2009 by .

I previously wrote about how to have your system automatically clear the pagefile before a reboot or shutdown. There’s a couple other steps I recommend you make on your system… Automatically permanently delete (Nuke on Delete)- Normally Delete sends files … Continue reading →

Posted in forensics, microsoft | Leave a comment

Jailbreak: Export non-exportable Windows certificates

Posted on 13-Oct-2009 by .

I came across a handy (& free) Windows utility that allows you to export “non exportable” certificates. Do you want to get at those recovery certificates or private keys? Jailbreak can be snatched here: https://www.isecpartners.com/jailbreak.html

Posted in microsoft, security | Leave a comment

Setting up Windows Honey Pot Shares

Posted on 12-Sep-2009 by .

I recently setup a honeypot share on a Windows server. I put some very “interesting” files and directories in there (financial information, PII etc) and then enabled audit logging in Windows. There’s a very powerful but mostly unknown Windows tool … Continue reading →

Posted in microsoft, security | Leave a comment

Microsoft’s google killer: Bing

Posted on 11-Jun-2009 by .

Now that Microsoft’s Bing has been out for a couple weeks I’m wondering everyone’s impression. I like the simple interface with minimal ad’s and clutter. Nothing like the MSN search. It looks awfully similar to Google’s interface. However, I’m very … Continue reading →

Posted in microsoft | Leave a comment