Radical Development

Tag Archives: Microsoft

May 12, 2013
by Steven Swafford
0 comments

Microsoft Assessment and Planning Toolkit Explained

What does the MAP toolkit do? The Microsoft Assessment and Planning (MAP) Toolkit 8.0 is an inventory, assessment, and reporting tool that helps you assess your current IT infrastructure and determine the right Microsoft technologies for your IT needs. The MAP toolkit uses Windows Management Instrumentation (WMI), Active Directory Domain Services (AD DS), SMS Provider, and other technologies to collect data in your environment and inventories computer hardware, software, and operating systems in small or large IT environments without installing any agent software on the target computers. The download is free, but it has a laundry list of prerequisites: .Net …

Continue reading

March 4, 2013
by Steven Swafford
1 Comment

Encrypting File System in Windows

Did you know that you can encrypt and decrypt files and folders within Windows without the need of any third party software? Encrypting File System (EFS) is a feature within New Technology File System (NTFS) where the individual who is currently logged into the operating system (OS) has the ability to perform encryption. If you encrypt a folder then any files that you move or copy into this folder also become encrypted and this all happens on the fly. The beauty of this is if you have a computer that is shared by multiple individuals this is a good way …

Continue reading

January 13, 2013
by Steven Swafford
0 comments

A Look At Microsoft SQL Server Database Security

Security and web applications is something that I speak and write about often and I believe one aspect of overlooked security is the database itself. For the purpose of this article I am focusing on Microsoft SQL Server. I am by no means a database administrator therefore this article is from the point of view of a developer and general in nature. Since web applications typically have an interface to the database the best way to think about security is the fact that the web application is the key to the database and for this reason you must take a …

Continue reading

September 25, 2012
by Steven Swafford
Comments Off

Sysinternals PsInfo

In the area of digital forensics information gathering and documentation is critical. While there are a number of available tools available I want to focus on PsInfo which is a command-line tool that gathers key information about the local or remote Windows NT/2000 system, including the type of installation, kernel build, registered organization and owner, number of processors and their type, amount of physical memory, the install date of the system, and if its a trial version, the expiration date. General Use psinfo [[\\computer[,computer[,..] | @file [-u user [-p psswd]]] [-h] [-s] [-d] [-c [-t delimiter]] [filter] \\computer Perform the …

Continue reading

August 6, 2012
by Steven Swafford
Comments Off

Harden The Operating System With Microsoft Attack Surface Analyzer

Just a few days ago Microsoft released what is known as the Attack Surface Analyzer which helps to harden the operating operating system by using snapshots. The idea is knowing what changes occur in the following areas: Developers to view changes in the attack surface resulting from the introduction of their code on to the Windows platform IT Professionals to assess the aggregate attack surface change by the installation of an organization’s line of business applications IT Security Auditors to evaluate the risk of a particular piece of software installed on the Windows platform during threat risk reviews IT Security …

Continue reading

June 23, 2012
by Steven Swafford
Comments Off

Find And Address Security Vulnerabilities With Tenable Nessus

Have you ever really stopped for a moment to consider just how vulnerable you are every time you turn on your computer? If your answer is no, I implore you to take security seriously as the threat is real and the reality is it is not difficult at all for the black hat (attacker) to find a vulnerability on your end and possible then exploit that vulnerability. HP’s 2011 Top Cyber Security Risks Report states that while vulnerabilities are down over recent years roughly 24% of recent vulnerabilities were classified as critical. The percentage is important because even though vulnerabilities …

Continue reading

May 7, 2012
by Steven Swafford
Comments Off

Series DropDownList: Cascading DropDownList

This is the second article on the subject of DropDownList. If for any reason you missed the earlier post titled Series DropDownList: Binding XML Data to a DropDownList, I would recommend that you take the time and read that post as well. In part two of this series I will focus on accomplishing cascading selections with your DropDownList. Since the bulk of the work was accomplished in DropDownList: Binding XML Data to a DropDownList we will pick up from there. Web Form Here we will incorporate a small change from the previous example. Notice that in this example I have …

Continue reading