PsExec and the Nasty Things It Can Do
An overview of what PsExec is and what its capabilities are from an administrative standpoint.
Querying Event Logs Using Wevtutil
Now that Windows 7 and Windows Server 2008 have significantly more powerful logging capabilities there is a great need for tools to better extract information from these logs. One such tool is called Wevtutil.
Product Review: ObserveIT Remote Access Auditor
Chris Sanders reviews ObserveIT’s software package, designed to record and audit remote desktop and Citrix sessions.
Analyzing Wireless Network Security at the Packet Level
Useful techniques for troubleshooting wireless security issues at the packet level.
Dissecting the Pass the Hash Attack
How the Pass the Hash attack technique works and a demonstration of the process that can be used to take stolen password hashes and use them successfully without having to crack their hidden contents.
Using Process Explorer to Examine Dialog Boxes
When troubleshooting program errors dialog boxes can often be unclear or confusing. This tip will show you a quick method to getting more out of those dialog boxes than meets the eye.
Process Monitor versus Process Explorer
Process Monitor and Process Explorer both have a lot in common. This tip gives a brief outline of how they are different and what tasks each on does.
Hiding Account Properties When a Device is Locked
When a Windows computer is locked it will show the username of the person who locked it by default. This tip will provide a method for fixing this bad security practice.
Forcing Server 2008 Domain Controller Demotion
When forcing the demotion of a domain controller in Windows Server 2003 there was a caveat that limited your ability to perform this action. This tip explains the caveat and its removal in Server 2008.
Enabling Jumbo Frames for Improved Data Transfer
Jumbo frames are not anything new but they are often forgotten about. Enabling them may provide a bit of a performance boost. This tip shows how to do that.