Auditing Windows Server security
Inspired by this question:
What tools are available to audit security on an existing Windows server, say Windows 2003, for my case, but what else, for which Windows Server version?
What can I do to test the existing protections on the network?
I’m looking for tools that can identify configuration errors, common and less common flaws, known issues, antivirus tools, any tool at all that can help identify and fix problems in the server. Extra bonus karma feel-good coffee bean points for tools that can be used network- or domain-wide.
The Penetration Testing Framework may be worth reading as a starting point. For the tools, there is a lot of them for auditing security, for example you may be interested in the following ones among many others:
and the many others that are gonna be reported in this thread.
Check more discussion of this question.
Related posts:
- Windows Server 2008 R2 Security Policies Appear to be Locked
- Hiding subfolders from users with Windows Server security
- Why aren’t “Windows Firewall with Advanced Security/Connection security rules” and netsh in sync?
- Is Windows Server 2008R2 NAP solution for NAC (endpoint security) valuable enough to be worth the hassles?
- Does Windows XP have C2 security certification?
Leave a comment
Recent Posts
- Windows File Permissions and Attributes
- What is the easiest way to upgrade my existing Perl 5.14 to Perl 5.16 on FreeBSD 9 using the ports system?
- Know if mysql has done its job
- Redirect https .com to https .co.uk without a valid SSL cert on .com without DNS change
- Why is it a bad idea to use customer email as from address