1
Q
Day 5 - Windows Security
A
- Windows security infrastructure
- Lab- process hacker
- service packs, hotfixes, and backups
- windows access controls
- lab - microsoft baseline security analyzer
- enforcing security policy
- lab - secedit
- securing windows network services
- automation, auditing, and forensics
- lab - powershell scripting
2
Q
Key Protocols that you should memorize
A
Perimeter and host-based firewalls should filter out unwanted traffic
SMB RPC LDAP Kerberos DNS RDP SQL Server NetBIOS IPSec
3
Q
SMB
A
TCP 139/445
4
Q
RPC
A
TCP 135
5
Q
LDAP
A
TCP 389/636/3268/3269
6
Q
Kerberos
A
TCP/UDP 88
7
Q
DNS
A
UDP/TCP 53
8
Q
RDP
A
TCP 3389
9
Q
SQL Server
A
TCP/UDP 1433/1434
10
Q
NetBIOS
A
NetBIOS Name service TCP/UDP 137, NetBIOS Datagram service UDP 138, NetBIOS Session service TCP 139, WINS TCP/UDP 1512, WINS replication TCP 42
11
Q
IPSec
A
UDP 500/4500 for IKE, Protocols 50 and 51 for ESP for AH
12
Q
SSL and TLS
A
TCP 443
13
Q
PPTP
A
TCP 1723, protocol 47
14
Q
Citrix ICA
A
TCP 1494
