Main Area and Open Discussion > General Software Discussion

3 Technical vidoes worth watching

(1/1)

40hz:
And from Microsoft TechNet no less!

Knowing the Enemy - A Lightning demonstration on how hackers attack networks.
Marcus Murray

Marcus does a 25 minute demo of how a hacker might compromise a network using readily available tools found on the web. The presentation is intended to be more for "awareness building" than (for obvious reasons) a demonstration of the newest hacking techniques. But it's still very effective in getting the point across.

It's particularly interesting to see the demo trojan exploit in action. Everybody knows this sort of thing goes on. Some of us may have even had to deal with the results of a hack. But most people have never actually seen a hack in progress. It's sort of like whale mating. We all know they do it - that's why there's more whales (QED) - but nobody ever seems to catch them doing it. Marcus gives you a vouteur's view into an exploit. So come see the whales! Fun!

http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359

Advanced Malware Cleaning
Mark Russinovich
http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359

The Case of the Unexplained Slowdown
Mark Russinovich
http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=722

These two (75-minute!) videos are worth their weight in DDR3 RAM. Mark Russinovich earned a lot of respect as the founder of WinIternals/SysInternals. These days he's working for Microsoft.

In the first video, you get to watch the "Master" demonstrate how to use all those terrific utilities he created to ferret out difficult malware. I learned quite a bit from this one.

The second video presents a series of technical "case studies" where he shows you how to identify and fix some system problems most GUI-based system repair tools can't touch.

If you want to get a better idea of how to use some of those SysInternals utilities, or you just want to go beyond what you can do with something like Fix-It or Norton, watch these vids. Especially good if you're a programmer and somebody's blaming your newest creation for screwing up their machine.

Note: This is probably old news for some of you, but you can get the entire suite of SysInternal utilities all packed into in one zip file. Great to have in your toolkit if you want to start trying out some of the things you'll learn in the above two presentations.

Download link:
http://technet.microsoft.com/en-us/sysinternals/0e18b180-9b7a-4c49-8120-c47c5a693683.aspx

Josh:
Now all they need is an installer or a GUI that can start each of these tools with parameters for the noobies! I for one would love the installer option for a local machine. That, and an updater. I've seen one, but it only includes like 8-9 of the tools (the more common ones like procexp and autoruns)

tinjaw:
And if you don't know already...

Open up IE and for the URL enter \\live.sysinternals.com

That will act as a UNC name and mount all the Sysinternals programs for you to run. This is very handy on a "no install" machine that is connected to the internet (like in a business setting).

Although you can't mount the site live in Firefox, http://live.sysinternals.com is a convenient way to get straight to the utilities you need.

3 Technical vidoes worth watching

40hz:
And if you don't know already...-tinjaw (August 05, 2008, 05:33 AM)
--- End quote ---

I didn't - and I've been using SysInternals utilities for years!

Thank you!

lanux128:
And if you don't know already...

Open up IE and for the URL enter \\live.sysinternals.com-tinjaw (August 05, 2008, 05:33 AM)
--- End quote ---

great tip, tinjaw! i didn't know this. :Thmbsup:

Navigation

[0] Message Index