- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
SANS InfoSec Reading Room - Windows Issues
Most of the computer security white papers in the Reading Room have been written by students seeking GIAC certification to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large. SANS attempts to ensure the accuracy of information, but papers are published "as is". Errors or inconsistencies may exist or may be introduced over time as material becomes dated. If you suspect a serious error, please contact webmaster@sans.org.
Featuring 43 papers as of Jul 20, 2008
- Session Hijacking in Windows Networks
- Paul Jess
- March 28, 2008
- - download paper
- Windows Remote Desktop Heroes and Villains
- Greg Farnham
- December 14, 2007
- - download paper
- Windows Vista: First Steps
- Johannes Ullrich
- November 5, 2007
- - download paper
- Laptop Security: Windows® Vista vs. XP
- Gregory Hill
- July 26, 2007
- - download paper
- How to Avoid Information Disclosure when Managing Windows with WMI
- Alex Timkov
- July 17, 2007
- - download paper
- Windows Security Patch Management Case Study: Using Software Update Services to Deploy Critical Windows Updates
- Michael Shepherd
- May 5, 2005
- - download paper
- Exploitation of the SSL PCT Overflow
- Eric Zielinski
- May 5, 2005
- - download paper
- Exploiting Microsoft Internet Explorer Cursor and Icon File Handling Vulnerability
- Jerry Chen
- May 5, 2005
- - download paper
- Implementing a Secure WebDAV System
- Richard Ross
- January 18, 2005
- - download paper
- Policy and the Windows Server 2003 Group Policy Management Console
- Norman Christopher Knight
- April 8, 2004
- - download paper
- Highly Available PC First Step in Business Continuity for Executives
- Joseph Fraher
- March 4, 2004
- - download paper
- An Overview of the Kerberos Authentication Proto
- Pam Todaro
- December 14, 2003
- - download paper
- Centralized Windows 2000 Event Logging: A Step-by-Step Guide
- Scott Richardson
- November 5, 2003
- - download paper
- Securing IIS6: From the OS, Up
- Joey Peloquin
- November 5, 2003
- - download paper
- IP Security in Windows 2000: Step-by-Step
- Timothy J. Rogers
- October 31, 2003
- - download paper
- Using Microsoft Terminal Services and Windows Terminals to Protect Confidentiality, Integrity, and A
- Tony Sweeney
- October 31, 2003
- - download paper
- Microsoft Windows Security Patches
- Dan B Rolsma
- October 31, 2003
- - download paper
- Tightening Site Access
- Stephen Willis
- October 31, 2003
- - download paper
- Quick Guide to IIS Web Server Security
- Brian LeVasseur
- October 31, 2003
- - download paper
- NetMeeting Security Concerns
- Jody Weiner
- October 31, 2003
- - download paper
- Windows XP and Full Raw Sockets: A New Security Concern from Home-based PC's or a Desirable N
- Jim Kehres
- October 31, 2003
- - download paper
- Introduction to the Microsoft Windows XP Firewall
- Matt Snitchler
- October 31, 2003
- - download paper
- Event Logs: Defining Their Purpose in Today's Network Security Environment
- Steve Meyer
- October 31, 2003
- - download paper
- An investigation of Microsoft's Passport protocol and issues regarding its security, privacy
- Arthur Hermann
- October 31, 2003
- - download paper
- Three Defenses to a Secure System: Virus Scanning, Applying Patches and System Monitoring
- Angelina Lucero
- October 31, 2003
- - download paper
- SANS Windows Security Training
- Philip Blow
- October 31, 2003
- - download paper
- NT/2000 Security Tool Kit on A Budget
- Albert Rice
- October 31, 2003
- - download paper
- Windows 9X in a Bad Neighborhood
- Terry Wehunt
- October 31, 2003
- - download paper
- XP - The Future of Secure Operating Systems?
- Justin Coburn
- October 31, 2003
- - download paper
- NULL Sessions In NT/2000
- Joe Finamore
- October 31, 2003
- - download paper
- Configuring Internet Explorer Security Zones: A New Tool for the Security Community
- Ken Barber
- October 31, 2003
- - download paper
- Assessing the security of the Windows XP Internet Connection Firewall
- David Collins
- October 31, 2003
- - download paper
- The Raw And The Uncooked: The Windows XP Raw Sockets Saga, Final Words (Hopefully)
- Tony Menzies
- October 31, 2003
- - download paper
- Windows NT/2000 Event Logs
- William Mendez
- October 31, 2003
- - download paper
- Vulnerability Risk Mitigation - Patching the Microsoft Windows Environment
- Tracy Lynn
- October 31, 2003
- - download paper
- Microsoft .NET - An Overview
- Rob McBee
- October 31, 2003
- - download paper
- Security-What Does "Trust" Have To Do With It?
- Ken Lange
- October 31, 2003
- - download paper
- Microsoft Windows XP Home Edition Security Implementation
- Dennis Schrader
- October 31, 2003
- - download paper
- Security Issues For Exchange 2000 Outlook Web Access Implementation
- Paula Kohrt
- October 31, 2003
- - download paper
- Taking the Confusion Out of Security Templates
- Robert Aitken
- October 31, 2003
- - download paper
- Top 10 Mistakes on Windows Internal Networks
- Deirdre Hurley
- October 31, 2003
- - download paper
- NetMeeting 3.01 Remote Desktop Sharing: Security Concerns
- Randy Humphrey
- October 31, 2003
- - download paper
- Discretionary Access Control Knowledge, a Practical System
- Dean Bushmiller
- October 31, 2003
- - download paper
Check Them Out!
This is hands-down, the premiere training opportunity.
- Dan Mather, JICPAC
