| Security: News, Exploits |
| SecurityNow! by Steve Gibson |
Hidden Backdoors, Trojan Horses and Rootkit Tools in a Windows Environment
- Not every case of a successful intrusion is "crowned" with a replaced Web site on the server, data theft or damage. Often electronic intruders do not wish to create a spectacle but prefer to avoid fame by hiding their presence on compromised systems, sometimes leaving certain unexpected things. They use sophisticated techniques to install specific "malware" (backdoors) to let them in again later with full control and in secret.
|
| SANS Institute - Network, Security, Computer, Audit Information & Training |
| TechNet Security Center Bulletins Advisories Tools Guidance and Resources |
- SecurityFocus
- A vendor-neutral site that provides objective, timely and comprehensive
security information to all members of the security community, from end
users, security hobbyists and network administrators to security
consultants, IT Managers, CIOs and CSOs.
|
| Microsoft Security Response Center Blog |
| Open Web Application Security Project (OWASP) |
| Zeroday Emergency Response Team (ZERT) |
| Security: Prevention, Detection, Removal |
Microsoft Windows XP Service Pack 2 (Download or order the CD) |
- Principle of Least Privilege
- The principle of least privilege requires that a user, program, or service be given no more privilege/access than necessary to perform a job.
|
| Applying the Principle of Least Privilege to User Accounts on Windows XP (pdf) |
- Zone Labs - http://zonelabs.com/
- Personal firewall for Windows. Blocks inbound & outbound. Free version of ZoneAlarm is available.
|
- AVG Anti-Virus - http://grisoft.com/
- Antivirus protection for personal computers, e-mail servers, file servers. Free version available.
|
-
Guide To Ghost System Recovery -
-
Writing A Ghost Image File BackupRestoring From A Ghost Image FileCommands, Options And Extra ToolsAdvice On Good Strategy For Ghost
|
| Symantec Ghost Solution Suite : Documentation |
- SpyBot Search & Destroy - http://spybot.info/
- Spybot - Search & Destroy can detect and remove spyware of different kinds from your computer. Spyware is a relatively new kind of threat that common anti-virus applications do not yet cover. If you see new toolbars in your Internet Explorer that you didn't intentionally install, if your browser crashes, or if you browser start page has changed without your knowing, you most probably have spyware. But even if you don't see anything, you may be infected, because more and more spyware is emerging that is silently tracking your surfing behaviour to create a marketing profile of you that will be sold to advertisement companies. Spybot-S&D is free, so there's no harm in trying to see if something snooped into your computer, too :) .
|
- Ad-Aware - http://lavasoft.nu/english/
- Can detect and remove spyware of different kinds from your computer. It recommended that you use more than one program to check for and remove spyware, since one program may find what another didn't.
|
- Security Now! http://grc.com/securitynow.htm
- TechTV's Leo Laporte and Steve Gibson take 20 to 30 minutes near the end of each week to discuss important issues of personal computer security. Sometimes they'll discuss something that just happened. Sometimes they'll talk about long-standing problems, concerns, or solutions. Either way, every week they endeavor to produce something interesting and important for every personal computer user.
|
| Top 100 Network Security Tools by Insecure.Org |
| Carnivore is a surveillance tool for data networks. |
Blocking Unwanted Parasites with a Hosts File
You can use a HOSTS file to block ads, banners, 3rd party Cookies, 3rd party page counters, web bugs, and even most hijackers. This is accomplished by blocking the connection(s) that supplies these little gems.
|
| Passwords |
- How To Build Better Passwords - http://informationweek.com/story/showArticle.jhtml?articleID=164303537
- Stronger passwords don't have to be hard to create or use, Fred Langa says. Here are tools and tips that can help.
|
- Password checker
- Your online accounts, computer files, and personal information are more secure when you use strong passwords to help protect them. Test the strength of your passwords
|
| How I'd Hack Your Weak Passwords |
Password Generator - by Nic Wolff
A JavaScript program that will concatenate two fields and MD5
them. The idea is that you choose one master password to secure all
your others, and then generate unique passwords for each Web site, server, router,
etc. by putting a completely obvious name for that resource in the "Site name" field. Can be run locally.
|
Ultra High Security Password Generator
GRC's server generates a unique set of custom, high quality, cryptographic-strength password strings which are safe for you to use.
|
| Utilities |
Diagnostic and Monitoring Tools:
- RootkitRevealer is an advanced patent-pending root kit detection utility. It runs on Windows NT 4 and higher and its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit. RootkitRevealer successfully detects all persistent rootkits published at rootkit.com, including AFX, Vanquish and HackerDefender (note: RootkitRevealer is not intended to detect rootkits like Fu that don't attempt to hide their files or registry keys).
- Active Ports: Monitors all open TCP and UDP ports on the local computer.
- Process Viewer displays detailed information about processes running under Windows
- FileMon monitors and displays file system activity on a system in real-time.
- Regmon is a Registry monitoring utility that will show you which applications are accessing your Registry, which keys they are accessing, and the Registry data that they are reading and writing - all in real-time.
- CheckDNS.net Checks DNS delegation, mail and web servers in a domain.
- DNS Stuff: DNS tools, DNS hosting tests, WHOIS, traceroute, ping, and other network and domain name tools.
|
- Gibson Research Corp. http://grc.com/
- Use ShieldsUp! to test the security of your computer's connection to the Internet. Also a good site to learn about firewalls and security.
|
- CD Speed - http://cdspeed2000.com/
- Test CD-ROM's for readability. Extra > Scan Disk... Make sure the "File test" and "Surface Scan" are checked. This utility also comes with Nero Burning ROM software.
|
|
| Certifications |
- CompTIA Network+ Certification http://comptia.org/certification/network/
- Earning a CompTIA Network+ certification demonstrates that a candidate can describe the features and functions of networking components, and possesses the knowledge and skills needed to install, configure and troubleshoot basic networking hardware, protocols and services. The exam tests technical ability in the areas of media and topologies, protocols and standards, network implementation, and network support. The exam also covers new technologies such as wireless networking and gigabit Ethernet.
|
- CompTIA Security+ Certification http://comptia.org/certification/security/
- CompTIA Security+ validates knowledge of communication
security, infrastructure security, cryptography, operational
security, and general security concepts. It is an international,
vendor-neutral certification that is taught at colleges,
universities and commercial training centers around
the world. Although not a prerequisite, it is recommended
that CompTIA Security+ candidates have at least two
years on-the-job networking experience, with an emphasis
on security.
|
- CompTIA's TechCareer Compass
- Can provide you with the tools to define your career goals, find out which certification(s) you need to get there, and help you establish yourself as an information and communications technology (ICT) professional.
|
- Microsoft Certified Systems Administrator (MCSA) http://www.microsoft.com/traincert/mcp/mcsa/
- The Microsoft Certified Systems Administrator (MCSA) credential proves that you have the skills to successfully implement, manage, and troubleshoot the ongoing needs of Microsoft Windows 2000–based operating environments
|
| Security Certifications
|
- CompTIA A+ Certification
- Confirms a technician's ability to perform tasks such as installation, configuration, diagnosing, preventive maintenance and basic networking. The exams also cover domains such as security, safety and environmental issues and communication and professionalism.
|
- Microsoft Certified Desktop Support Technician (MCDST)
- MCDSTs have the technical and customer service skills to troubleshoot hardware and software operation issues in Microsoft Windows environments.
|
| Reference: General & Tips |
- Webopedia - http://webopedia.com
- Online dictionary for computer and Internet terms.
|
- Wikepedia.org - http://wikipedia.org
- Multi-language online encyclopedia.
|
| FOLDOC (Free On-line Dictionary of Computing) |
| Microsoft Windows Server TechCenter |
- WindowsSecrets.com - http://windowssecrets.com
- Brings you tips & tricks for running Microsoft Windows XP, Vista, Internet Explorer, Firefox, Windows Update, and more — weekly, free.
|
- RAID Tutorial and Benchmarks Collection http://acnc.com/04_00.html
- Advanced Computer & Network Corporation proudly presents the RAID levels tutorial featuring clear easy-to-understand diagrams and concise descriptions of every RAID level. Flash animated verison is now available!
|
| Binary
|
- Understanding Relational Database Design -
- The Reldes.doc Word document shows you how to plan and design a database from the ground up. For practical examples, it uses the database design of the Northwind Traders sample database included in Microsoft Access 2000.
Download DBDesign.exe.
|
- Ten common management mistakes: And how to avoid them... http://www.nwfusion.com/research/2003/0609mistakes.html
- Your job is to keep the network up and running, so employees can work without interruption and so that you can get home at a reasonable hour. The problem is that things don't always go the way you want them to go. Some days just plain stink. There are many reasons, but we'll just stick to the 10 most commonly encountered network management potholes.
|
File Systems
- FAT internals (http://home.no.net/tkos/info/fat.html)
- FAT structure (http://www.active-disk-wiper.com/wiper-file-allocation-table-FAT.htm)
- NTFS structure (http://www.active-disk-wiper.com/wiper-understanding-file-system-ntfs.htm)
|
- mechBgon's guide to building your first PC from parts - http://www.omnicast.net/~tmcfadden/guides/build/
- A photo guide to the mechanical assembly of a computer.
|
- PC components (http://www.pcguide.com/ref/index.htm)
- Review of the computer hardware components : start with basics and learn more in-debth later
|
| Reference: Networking & TCP/IP |
- IP Address Conversions
- How to: Convert a Decimal Number to a Base-256 dotted-decimal
|
- How The Internet Works - pdf
- IP Addresses, URLs, Domain Names – What Do They Mean?
|
- Daryl's TCP/IP Primer - http://ipprimer.com/
- Designed to give the reader a reasonable working knowledge of TCP/IP subnetting, addressing, and routing. It is not intended to be complete, or to cover all issues. This is targeted toward LAN administrators just moving to TCP/IP, however it should help anyone who wants to know a little (more) about how TCP/IP works.
|
- Learn TCP/IP - http://learntcpip.com/
- Learn TCP/IP, IP, TCP, DNS, Ethernet networking protocols; the OSI Model and IP Addressing (Subnetting) with lecture based presentations. (Note: As of Feb. 2005, they have not updated their v3.0 scripts to recognize Mozilla 1.7 or Mozilla Firefox 1.0, so use the Classic v2.02 version.)
|
- Understanding IP Addressing: Everything You Ever Wanted To Know - http://coxpc.com/content/3com_Chuck_Semeria.htm
- By 3Com / Chuck Semeria. pdf. pdf.
|
| Learn to Subnet - http://learntosubnet.com |
| |
OSI Model:
|
- Protocols.com
- A comprehensive listing of data communications protocols, their functions in respect to the OSI model, the structure of the protocol and various errors and parameters.
|
| Classless Inter-Domain Routing (CIDR) Overview |
- PracticallyNetworked.com - http://practicallynetworked.com/
-
- Networking Essentials, How to Guides, Product Reviews, Troubleshooting and Tutorials.
|
- Peter Packet - http://cisco.com/warp/public/779/edu/peterpacket/pp.html
- Avoids Hackers, Viruses and Network Traffic to Make the World a Better Place.
An online game created by Cisco promotes awareness of global needs while teaching players what a router, server and packet actually do on the network.
|
- How E-mail Works - http://computer.howstuffworks.com/email.htm
- Have you ever wondered how e-mail gets from your desktop to a friend halfway around the world? What is a POP3 server, and how does it hold your mail? The answers may surprise you, because it turns out that e-mail is an incredibly simple system at its core! In this article, we'll take an in-depth look at e-mail and how it works.
|
- Best Practice Active Directory Design for Managing Windows Networks
- A structured approach to Active Directory design makes enterprise-scale directory service deployment straightforward and easy to understand. This guide and its companion, Best Practice Active Directory Deployment for Managing Windows Networks, combine business and technical guidance to minimize the time and effort required to implement the Active Directory directory service.
This guide provides a step-by-step methodology based on best practices learned from customers that have already deployed Active Directory in their organizations. It provides all the tasks and decisions you need to develop an Active Directory design to manage Windows networks. The intended audience for this guide is the IT professional responsible for testing, piloting, and rolling out an Active Directory design.
|
| Client-Server vs. Peer-to-Peer (linksys.com) |
| Network topologies (http://www.lad.co.za/topology.html) |
| Introduction to LAN Protocols (cisco.com) |
| TCPmag.com (Tutorials and Reference) |
Routers and Routing
|
- Packet Life - http://packetlife.net/
- Tips, Forum, Cisco Marketing Icons for Visio, study references condensing a topic into one or two pages, in PDF format.
|
- The Story of the PING Program - http://ftp.arl.army.mil/~mike/
- The author of PING, Mike Muuss, talks about how and why ping was developed, and how it uses ICMP.
|
| Miscellaneous |
- KNOPPIX - http://knoppix.com/
- A bootable CD with a collection of GNU/Linux software, automatic hardware
detection, and support for many graphics cards, sound cards, SCSI and
USB devices and other peripherals. You can use this to test a computer
that has a messed up OS or no OS at all. Linux run directly from the
CD and doesn't alter the hard drive.
|
- DSL
Reports - http://dslreports.com/
- Broadband industry
news, ISP reviews, Speed tests, Forums.
|
- WinZip - http://WinZip.com/
- File compression.
A must have, when uploading and downloading large files.
|
- Novell:
Support - http://support.novell.com/
- Knowledgebase,
Patches and Fixes, Forum (discussion group). Make sure to check out
the Minimum
Patch List.
|
- Microsoft
Help & Support - http://support.microsoft.com/
-
- Search the Knowledgebase.
|
- Microsoft
plans Windows 2000 Server retirement -
- Microsoft said
it will gradually phase out its Windows 2000 Server family. Effective
April 1, 2006, the products will no longer be available.
|
- Windows
2000 Step-by-Step Guides
- These guides walk
you through the fundamentals of the Windows 2000 operating system.
Experience commonly used scenarios including management, directory,
and security services, as well as other related areas.
|
- TechBargains.com -
- Strives to find
you the best products at the best prices. Also helps you weed out
the shady vendors from legitimate ones.
|
- Turn
Off the CD-ROM Autorun - http://www.annoyances.org/exec/show/article03-018
- When an Autorun-enabled
CD-ROM is inserted into a CD-ROM drive, Windows automatically launches
the program contained on the disk, whether you want it to or not.
Similarly the audio CD player pops up whenever you insert an audio
CD and starts playing it immediately. This is cute the first or second
time, but soon gets infuriating. What's worse, is that if you double-click
on the your CD icon in My Computer, the autorun fires up,
instead of a folder window as you'd expect. This is especially irritating
on slower computers, where you have to wait for what seems like an
eternity for it to load some ridiculous welcome screen. Here's how
to do it:
|
- Real
Stories from IT Pros -
- Winning stories
from the TechNet Flash Real Stories from IT Pros competition.
|
- Annoyances.org - annoyances.org
- A collection
of information assembled for and by actual users of Microsoft Windows.
|
- RateMyProfessors.com -
- You can find out
what your fellow students think about professors teaching abilities
and you can anonymously review professors.
There are over 500 Professors listed for CityTech.
|
- PC
Radio Show - http://pcradioshow.org/
- Airing every Wednesday
night from 8:00PM to 9:00PM EST on WBAI-FM 99.5 in New York City.
Go to the Web site to listen to previous show archives.
|
