Windows Security

2/7/2020

3 minutes to read

In this article

RDP Brute force When it comes to managing Azure virtual machines, administrators are usually using...

Author: Moti Bani Date: 06/24/2018

Building your own lab for security research or penetration testing is a must for any security...

Author: Moti Bani Date: 05/11/2018

Adversaries are reusing credentials all the time, How can you check and prevent...

Author: Moti Bani Date: 05/06/2018

Invoke-Adversary is a PowerShell script that helps you to evaluate security products and monitoring...

Author: Moti Bani Date: 04/09/2018

Kali Linux on Windows 10 "Kali Linux on Windows 10? What the hell?" – one might ask. But we are in...

Author: Moti Bani Date: 03/07/2018

Kerberoasting, a term coined by Tim Medin, is a privilege escalation technique which proves to be...

Author: Moti Bani Date: 02/23/2018

Hi all, Audit logs in Azure Active Directory help customers to gain visibility about users and group...

Author: Moti Bani Date: 02/12/2018

In my previous post I explained how to leverage Group Policy Preferences to deploy and update Sysmon...

Author: Moti Bani Date: 12/25/2017

This new version of config_v8.xml adds the latest additions from Sysmon : FileCreateStreamHash...

Author: Moti Bani Date: 12/13/2017

Sysmon tool from Sysinternals provides a comprehensive monitoring about activities in the operating...

Author: Moti Bani Date: 12/07/2017

Here are the steps that are required to encrypt the disk of Azure Virtual Machine. This is a very...

Author: Moti Bani Date: 11/21/2017

Abstract Sysinternals Autoruns is a great utility for defenders to discover and disable malware and...

Author: Moti Bani Date: 11/04/2017

Consider the following scenario: a standard user was tricked to run a malicious code and his device...

Author: Moti Bani Date: 09/21/2017

Hello, Today I want to talk about securing your Bitlocker-enabled devices against a common attack...

Author: Moti Bani Date: 05/24/2017

The so-called AtomBombing code injection technique discovered by Tal Liberman seemed to be getting a...

Author: Moti Bani Date: 11/11/2016

Introduction Warning: This post recommends Sysmon monitoring policy implementations that are not...

Author: Moti Bani Date: 10/18/2016

Sysinternals Process Monitor is a powerful tool for investigating and troubleshooting application...

Author: Moti Bani Date: 05/04/2016

VirusTotal is a free virus, malware and URL online scanning service. File checking is done with more...

Author: Moti Bani Date: 12/13/2015

Azure has two different deployment models for creating and working with resources: Resource Manager...

Author: Moti Bani Date: 11/29/2015

Many words have been spoken about Slow Boot and Slow Login analysis, but today I want to focus on...

Author: Moti Bani Date: 11/10/2015

Notes: You should always check http://support.microsoft.com for the latest version of the different...

Author: Moti Bani Date: 10/21/2015

Hello! Today I will share with you my best practices for configuring the paging file in Windows...

Author: Moti Bani Date: 10/15/2015

Hello everyone. I'm Moti Bani, and I’ve been working in the IT industry for over 15 years, last 6 at...

Author: Moti Bani Date: 10/13/2015