Categories
Similar Boards
Suggest a Link

Windows

You must be logged in to view the contents of this board.

Certificate creation

Pin
  1. Creating self signed certificates with makecert.exe for development - Jayway
  2. Makecert.exe (Certificate Creation Tool)

Microsoft Office

Pin
  1. Plan cryptography and encryption settings for Office 2013
  2. Office build numbers | Build Numbers
  3. Office Crypto – David LeBlanc's Web Log

    Microsoft office crypto info

  4. Remove or reset file passwords in Office 2013

    Using Docrecrypt

  5. c# - How to detect installed version of MS-Office? - Stack Overflow

    Different type of office version

WinRM

Pin
  1. Understanding and troubleshooting WinRM connection and authentication: a thrill seeker'...

PS-Remoting

Pin
  1. PowerShell – How to create a PSCredential object – Kotesh Bandhamravuri

Lateral movement

Pin
  1. Authenticated Remote Code Execution Methods in Windows « Thoughts on Security
  2. Remote Weaponization of WSUS MITM – @sixdub
  3. GitHub - Kevin-Robertson/Invoke-TheHash: PowerShell Pass The Hash Utils
  4. Ways to Download and Execute code via the Commandline | GreyHatHacker.NET

SMB

Pin
  1. Wireshark: Determining a SMB and NTLM version in a Windows environment | Knowledge for ...
  2. SMB Troubleshooting | KeithsOffice

NetBios

Pin
  1. How NetBIOS name resolution really works

    http://www.techrepublic.com/article/how-netbios-name-resolution-really-works/

Patch Identification

Pin
  1. GitHub - GDSSecurity/Windows-Exploit-Suggester: This tool compares a targets patch leve...

.Net RSA Encryption

Pin
  1. CSharp-easy-RSA-PEM/main.cs at master · jrnker/CSharp-easy-RSA-PEM · GitHub
  2. Cryptographic Interoperability: Keys - CodeProject
  3. RSACryptoServiceProvider fails when used with ASP.NET – Decrypt my World
  4. RSACryptoServiceProvider CryptographicException System Cannot Find the File Specified u...
  5. Reading, writing and converting RSA keys in PEM, DER, PUBLICKEYBLOB and PRIVATEKEYBLOB ...
  6. .NET RSACryptoServiceProvider PEM + DER Support - Ady Lee - 博客园
  7. 1 more

Powershell

Pin
  1. Rijndael Encryption and Decryption in C# and Powershell |
  2. Useful powershell commands
  3. PowerShell Remoting Cheatsheet
  4. Mad With PowerShell: 64-bit vs 32-bit PowerShell
  5. GitHub - danielbohannon/Invoke-Obfuscation: PowerShell Obfuscator
  6. Characters to Escape
  7. 2 more

Batch command

Pin
  1. Batch files and batch commands

WMI Persistency

Pin
  1. Creating WMI Permanent Event Subscriptions Using MOF - CodeProject
  2. us-15-Graeber-Abusing-Windows-Management-Instrumentation-WMI-To-Build-A-Persistent Asyn...
  3. WMI_for_Detection_and_Response_S508C.pdf
  4. WINDOWS MANAGEMENT INSTRUMENTATION (WMI) OFFENSE, DEFENSE, AND FORENSICS
  5. Use PowerShell to Monitor and Respond to Events on Your Server | Hey, Scripting Guy! Blog

SQLCMD

Pin
  1. SQLServer Architecture,Benchmarking&Performance Optimization,DisasterRecovery,HighAvail...

WMIC

Pin
  1. WMIC Commands

    Method execution, OS, Process, Data

NTLM

Pin
  1. NTLM Mechanism in detail
  2. (2006-12-28) NTLM And Kerberos Authentication Explained The Easy Way « Jorge's Quest Fo...
  3. SANS Digital Forensics and Incident Response Blog | Protecting Privileged Domain Accoun...

Memory Forensic

Pin
  1. Memory Forensics
  2. Detecting Lateral Movement through Tracking Event Logs

Windows

Pin
  1. Detecting Forged Kerberos Ticket (Golden Ticket & Silver Ticket) Use in Active Director...

    Active Directory Security

  2. Security Watch: The Most Misunderstood Windows Security Setting of All Time

Event logs

Pin
  1. WEVTUTIL | Windows CMD | SS64.com
  2. Event-o-Pedia EventID 680 - Logon attempt by: %1 [Win 2003 / XP]
  3. Windows Security Log Encyclopedia

    Window log event ID reference

Exchange server

Pin
  1. Cmdlet List: Exchange 2007 Help
  2. Get-ClientAccessServer
  3. Understand the Exchange Server Roles in Exchange Server 2010
  4. What ports does MS Exchange use? - Support Area
  5. Exchange Management Shell Quick Reference
  6. How to Search Message Tracking Logs: Exchange 2007 Help
  7. 4 more

Kerberos

Pin
  1. How the Kerberos Version 5 Authentication Protocol Works: Logon and Authentication
  2. Kerberos in Active Directory | Security content from Windows IT Pro

Sysinternals

Pin
  1. SysInternals Pro: Using Process Explorer to Troubleshoot and Diagnose
  2. SysInternals Pro: Using Autoruns to Deal with Startup Processes and Malware
  3. hta-t07r-license-to-kill-malware-hunting-with-the-sysinternals-tools_final.pdf

NTDS.dit

Pin
  1. Getting Hashes From NTDS.dit File - Sword & Shield

IIS Control

Pin
  1. Appcmd.exe
  2. Application Pool Identities : The Official Microsoft IIS Site
0 Comment
Comments or thoughts?
Submit
Cancel
or
Email a link to this board
Share this board on Facebook
Share this board on Twitter
Notice label will go here