"Encryption is like a huge spike in the middle of
the road. Very impressive, but most will drive right around it..."
Wednesday, April 29, 2009
Friday, April 24, 2009
Kon-Boot CD
Came across a great little program today. Kon-Boot Booting to the CD allows you to log into any profile on a computer without knowing the password for that profile. It works on Windows XP through Windows 7 and Windows 2003 to 2008.
There are two very cool things about this program that is different from older password reset tools like Offline NT Password and Registry Editor.
1. Kon-Boot does not reset the password. When your done, just reboot and no one is the wiser. The old password still works on the profile.
2. Unlike Offline NT Password and Registry Editor you can access Local and Domain profiles.
Accessing the domain profile on a computer is very cool. Even though you can log into a domain profile you still will not have access to any network recources until you re-authenticate with the domain. Buy hay you still have access to everything on that profile, which can come in very handy if you need to get to a profiles offline files.
There are two very cool things about this program that is different from older password reset tools like Offline NT Password and Registry Editor.
1. Kon-Boot does not reset the password. When your done, just reboot and no one is the wiser. The old password still works on the profile.
2. Unlike Offline NT Password and Registry Editor you can access Local and Domain profiles.
Accessing the domain profile on a computer is very cool. Even though you can log into a domain profile you still will not have access to any network recources until you re-authenticate with the domain. Buy hay you still have access to everything on that profile, which can come in very handy if you need to get to a profiles offline files.
Friday, April 10, 2009
Mapping ports to processes
Using security scanners like GFI LANguard or Super Scanner you can port scan the computers on your network for open ports. Say you find a computer with port 25 (email server) open, how do you find out what program has that port open? Here are a few ways to map a port to a process.
1. Windows has a built in program called NETSTAT this program shows what TCP and UDP ports are open on your computer. From a DOS prompt run NETSTAT -ano this will list all ports and the Process ID associated with the port. Open Task Manager to map the Process ID to the Process.
2. FPort is a command line program you can download from Foundstone that will map ports to processes
3. TCPView from Sysinternals. This tool unlike the other tools had a GUI Interface.
1. Windows has a built in program called NETSTAT this program shows what TCP and UDP ports are open on your computer. From a DOS prompt run NETSTAT -ano this will list all ports and the Process ID associated with the port. Open Task Manager to map the Process ID to the Process.
2. FPort is a command line program you can download from Foundstone that will map ports to processes
3. TCPView from Sysinternals. This tool unlike the other tools had a GUI Interface.
Subscribe to:
Posts (Atom)