Windows Security Articles

Page 1 of 1 (4 articles)

12/1/2024 • EN

EDR Silencers and Beyond: Exploring Methods to Block EDR Communication - Part 1

Explores techniques, including Name Resolution Policy Table (NRPT) manipulation, to block EDR agent communication for red teaming and discusses detection methods.

Edr Evasion Endpoint Detection Microsoft Defender Network Filtering Windows Security

Fabian

9/24/2024 • EN

How to intercept the “run as administrator” event

A technical guide on intercepting and monitoring the 'Run as Administrator' event on Windows using Event ID 4688 and XPath queries.

Azure Monitoring Event Monitoring Process Creation Token Elevation Windows Security

Nicola Delfino

1/5/2022 • EN

Better advanced file security on Windows using PowerShell

A guide to fixing SSH private key permission errors on Windows using PowerShell, avoiding the complex manual file security settings.

Azure Ad File Permissions Powershell SSH Keys Windows Security

Alex

5/21/2013 • EN

An easy and secure way to store a password using Data Protection API

Explains how to securely store passwords in .NET using Windows Data Protection API (DPAPI) and the ProtectedData class.

.net cryptography Data Protection API Password Security Windows Security

Thomas Levesque

Windows Security Articles

EDR Silencers and Beyond: Exploring Methods to Block EDR Communication - Part 1

How to intercept the “run as administrator” event

Better advanced file security on Windows using PowerShell

An easy and secure way to store a password using Data Protection API

Select Language