|
(Page 5 of 8) < Prev 1 2 3 4 5 6 7 8 Next > Category: System Security Management » Windows NT HardenNT Security Script Generator Added 2001-10-22 HardenNT is a tool created to automate the task of securing one or more Microsoft Windows based computers. It is specifically aimed at securing Windows NT 4.0 machines, although some of the functionality could also be used on Windows 9x or even Windows 2000 networks. RegDACL Added 2001-10-22 RegDACL allows you to query and change the discretionary access control list (DACL) of any Windows NT Registry key. You can of course use NTīs built-in RegEdt32 to set registry permissions,but if you need to edit more than a few machines then you are faced with quite a boring job, not to mention being more prone to make mistakes. RegDACL, gives you the ability to use a batch script to perform this job. The freeware version 1.1 of RegDACL allows you to define access permissions for the predefined groups Administrators, Everyone, Interactive, Network, System, Creator Owner, User, Authenticated Users, Batch, Local, Service, Anonymous Logon, Domain Administrators, Domain Users and DomainGuests and in much more detail than RegEdt32 will allow. Harden NT Added 2001-10-22 HardenNT is a tool created to automate the task of securing one or more Microsoft Windows based computers. It is specifically aimed at securing Windows NT 4.0 machines, although some of the functionality could also be used on Windows 9x or even Windows 2000 networks. HardenNT is aimed at: Security minded system administrators who are willing to put some time and effort into securing their Windows systems; Security consultants who find themselves having to secure Windows NT computers regularly, and who are looking at a way to automate this as much as possible without losing the flexibility of easy customization. HardenNT's strength lies in its ability to provide security baselines for various systems. It can be used to perform the following tasks: Install one or more security patches on a Windows computer depending on its operating system, CPU architecture and service pack level; Restrict a user group's default NT privileges; Turn on NT auditing for security events a user considers important; Set NTFS ACL permissions, delete and/or move security critical files; Secure a computer's registry. HardenNT is not a tool that is to be installed or even run on a computer that one wants to secure. It merely creates a number of batch files that run standard NT (and NT resource kit) tools. This means that the batch files created by HardenNT are to be copied and run on the host you want to secure. The batch files rely on Microsoft Windows NT resource kit utilities (xcalcs.exe, auditpol.exe, ntrights.exe, regini.exe and shutdown.exe) and Microsoft security hotfixes. These executables will have to be purchased or downloaded from Microsoft and copied to the host you are trying to secure. Regsec Added 2001-10-22 Regsec.kix is a 32-bit Kixtart script designed to run at logon that resets (currently) 46 security-related Registry edits on NT workstations and servers, grouped into 3 increasingly-secure levels (called DEFCONS). The script allows for messagebox prompting ( through the $QUERYUSR variable) prior to the installation of each edit, or an administrator can opt to automate the entire installation process. It also possesses a debug property, which allows the admin to simply review the proposed changes for each level. Each grouping of edits can be tailored by modifying the $DEFCON value. All notes regarding this script's use are in the source code of the script. Chown Added 2001-10-22 CHOWN.ZIP is a GUI NT equivalent to the UNIX tool. Microsoft claims that the ownership process of NTFS file objects in NT is a two-part process, requiring that the user possess the right to take ownership (granted by the original object's owner/admin), then forcing them to execute the ownership right. This is to protect object ownership from "Rogue Administrators". This two-part ownership process is undesirable for administrators, who would prefer to just "give" ownership of file/directory objects to a particular user or group. This tool was written to show that the Owner ACL of a file/directory object can be overwritten with a modified replica Securirty Descriptor and elevated use of the SeRestorePrivilege (Tested to NT SP6). Source Code included with EXE. Logout Added 2001-10-22 Logout.zip is a project that runs on 95/NT workstations that monitors for idle activity on the station and, at a modifiable timeout variable, logs off, reboots or shuts down the NT/95 workstation. Source Code included with EXE. lsadump2 Added 2001-10-22 This is an application to dump the contents of the LSA secrets on a machine, provided you are an Administrator. It uses the same technique as pwdump2 to bypass restrictions that Microsoft added to LsaRetrievePrivateData(), which cause the original lsadump, by Paul Ashton, to fail. Advanced NT Security Explorer Added 2001-10-22 Advanced NT Security Explorer is an application for NT system administrators for finding holes in system security. It analyses user password hashes, and tries to recover plain-text passwords. If it's possible to recover the password in a reasonable time, the password should be considered to be insecure, and so it's time to change it. Users can access a hard drive from another computer in the network and copy a SAM registry key, where password hashes are stored. Also, users can sniff a network and recover password hash from sniffer results. Advanced NT Security Explorer (ANTExp) will help you in your way to complete system security. In addition, ANTExp could be used for recovering lost passwords of particular users. IISperms Added 2001-10-22 The IIS Security "What If" tool is a Dynamic HTML (DHTML) utility designed to assist in troubleshooting security issues with IIS. COBRA Added 2001-10-22 COBRA is a knowledge based system widely used for security sisk analysis and compliance with security policies, BS7799 and ISO 17799. Browse by category |
|
|
Privacy Statement |
