USBDeview is a small utility that lists all USB devices that currently connected to your computer, as well as all USB devices that you previously used.
For each USB device, extended information is displayed: Device name/description, device ...
Hi All,
In this video I have covered the various ways to extract useful information from a capture file and then corelate that information for investigations. I also speak about ...
Hi All,
In this video, I have described the new user interface of Wireshark and different options available while capturing traffic.
I have also covered the origins of ...
This video is about logging in a machine with SYSTEM account. When we add a scheduled task, it runs under system account.
Using the interactive scheduled task this can be ...
Microsoft has released a security advisory (2286198) . The vulnerability exists because Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the user clicks the displayed icon of a specially crafted shortcut. ...
In some cases, we get an "Open With" box while accessing any executable.
This problem occurs if the .exe file association in the registry is corrupt. This behavior is generally caused by viruses.
Click Start, Run and type ...
About Winsock:
The Winsock is a technical specification that defines how Windows network software should access network services, especially TCP/IP. It defines a standard interface between a Windows TCP/IP client application (such as an FTP client or ...
The Symantec ThreatCon rating is a measurement of the global threat exposure, delivered as part of Symantec DeepSight Threat Management System.
We always see the Threatcon level indicator on the Symantec.com website as well as the Endpoint ...
TCPView is a Windows program that will show you detailed listings of all TCP and UDP endpoints on your system, including the local and remote addresses and state of TCP connections.
On Windows Server 2008, Vista, NT, 2000 and XP TCPView also reports ...
In Windows Server 2003, when you use Terminal Services, you can connect to the console session (session 0), and at the same time, open a shadow session to it (as long as you connect from a session other than the console).
With ...