Name few Microsoft Windows security audit tools and discuss the best practices for Microsoft Windows security audits.
DQ requirement: Note that the requirement is to post your initial response no later than Wednesday and you must post one additional post during the week by Sunday. I recommend your initial posting to be between 200-to-300 words. The replies to fellow students and to the professor should range between 100-to-150 words. All initial posts must contain a properly formatted in-text citation and scholarly reference.
Initial Response: 6/20
Peer Response: 6/24
and the below discussion is one of my friends do not copy anything from it i need to 100-150 words to give a response so i get complete points please do both discussions and reply to my friends post in case he missed any points on it.
First of all let’s start with what is Windows security audit tool?
In Microsoft windows there is a specific log that contains all the records such as login or log out or variety of other security events and is known as security log.
What do you understand by auditing in windows?
A way of tracking events is known as Windows Auditing. The main focus is to know how where and when the events took place and who helped them go through. It is at times very useful when sensing some improper activities like the rights have been shared to a file system or something.
MSAT, IBM internet scanner, Nessus, Retina are some of the examples of windows auditing tool.
I will be taking about MBSA (Microsoft Baseline Security Analyser)
This is a software tool that is launched by Microsoft to define security and its various stages and its updates. We can define security by looking over the blank security updates and the security settings that are less secure in the Microsoft Windows. The less-secure security settings are known as Vulnerable Assessment check. The Microsoft office, Internet Explorer, the Microsoft SQL Server are under macro settings.
Personally for audits I would prefer Microsoft Excel more since the pivot tables and V-look up help us a lot for figuring out the streamline of data and can fetch a large amount of information.
Agile Application Security
Book by Jim Bird, Laura Bell