Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Windows

alienvault

How to perform basic digital forensics on a Windows computer

Nov 20, 2023 By Kushalveer Singh Bachchas In AT&T Cybersecurity

Digital forensics is a critical field in the investigation of cybercrimes, data breaches, and other digital incidents. As our reliance on computers continues to grow, the need for skilled digital forensics professionals is more crucial than ever. In this guide, we will explore the basics of performing digital forensics on a Windows computer, including key steps, tools, and techniques.

Read Post

Endpoint Security: More Than Just Windows Machines

Sep 8, 2023 By Razorthorn In Razorthorn
Let's talk endpoint security with a dose of reality! 🛡️💻 In this eye-opening discussion, we explore the concept that attackers ultimately aim for an endpoint. But here's the catch: defining what an endpoint means in today's complex digital landscape isn't as straightforward as it seems. If your idea of an endpoint is limited to just Windows machines, you might be in for a surprise. There's a lot more to it! 🌐
View Video
netwrix

How to Perform Windows Registry Repair: Registry Repair Windows 10

Aug 29, 2023 By Dirk Schrader In Netwrix

The Windows registry is a database that contains important information about your computer — users, preferences, applications, attached devices and much more. The Windows operating system constantly refers to the registry; for example, to open a program, install new software or change your hardware, Windows must check the values of certain registry keys.

Read Post
CrowdStrike

The Windows Restart Manager: How It Works and How It Can Be Hijacked, Part 1

Aug 25, 2023 By Mathilde Venault In CrowdStrike

Malware utilizes a multitude of techniques to avoid detection, and threat actors are continuously uncovering and exploiting new methods of attack. One of the less common techniques includes the exploitation of the Windows Restart Manager. To stay ahead of malicious authors, it is important to be aware of them and understand how they work.

Read Post

Protecting your Windows Fleet with Zero Trust

Aug 24, 2023 By Teleport In Teleport
In today's increasingly remote-first business landscape, secure and efficient access to Windows desktops and servers has become more crucial than ever. Join us in this illuminating webinar as we navigate the evolving patterns and practices of remote access, and how to optimally safeguard your Windows Servers. We will spotlight common access patterns, detailing the do's and don'ts for ensuring secure access.
View Video
armo

Kubelet vulnerabilities on Windows nodes: CVE-2023-3676, CVE-2023-3955 and CVE-2023-3893

Aug 23, 2023 By Ben Hirschberg In ARMO
Recently, the Kubernetes Security Response Committee disclosed three interrelated vulnerabilities affecting the Windows versions of Kubelet and the Kubernetes CSI proxy. These vulnerabilities pose a significant risk, allowing even users with limited permissions to escalate their privileges to administrator level on affected nodes.
Read Post
stripe olt

Windows Server 2012 End of Life

Aug 23, 2023 By Stripe OLT In Stripe OLT

Windows Server 2012, is the sixth version of the Windows Server operating system by Microsoft, as part of the Windows NT family of operating systems. At the time, Windows Server 2012 brought forth an array of enhanced features and refinements, and over the years, it stood as a cornerstone for many organisations, providing a bedrock of reliability, scalability, and adaptability to accommodate applications and workloads.

Read Post
signmycode

Windows Security: Detailed Guide to Understand Security Baselines

Aug 17, 2023 By SignMyCode In SignMyCode

The security of your organization’s data and systems is at the top. As a leading provider of operating systems and applications, Microsoft understands the criticality of safeguarding its customers’ sensitive information. With products like Windows, Windows Server, Microsoft 365 apps for enterprise, and Microsoft Edge, they strive to offer secure solutions that inspire confidence.

Read Post
netwrix

Windows Remote WMI Security Primer for the Faint-Hearted

Aug 14, 2023 By Joe Dibley In Netwrix

Local WMI querying is straightforward to implement and troubleshoot — but remote WMI querying is another story. Indeed, setting up secure remote WMI querying for a user with no admin rights is a daunting task. This blog can help. I’ll walk you through the steps I used to enable a standard domain user to query the Microsoft SQL Server WMI namespace class on a Windows Server 2012 R2 running Microsoft SQL Server 2016.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.