You are here: Windows OS HubSecurity

Archive for the 'Security' Category

How to Obtain SeDebugPrivilege when Debug Program Policy is Enabled

Posted on December 28th, 2017 · Posted in Security, SQL Server, Windows Server 2012 R2
sql server setup error: Setup account privileges failed

In the previous article, we told that one of the ways to defending against mimikatz-like utilities is disabling the debug privilege for system administrators using Debug Program policy. However, recently it turned out that without the debug privilege (it is SeDebugPrivilege in Windows), a local server administrator cannot install or.. read more

Defending Windows Domain Against Mimikatz Attacks

Posted on December 7th, 2017 · Posted in Group Policies, Security
mimikatz: ERROR kuhl_m_privilege_simple ; RtlAdjustPrivilege (20) c0000061

The IT community remembered late June, 2017, due to massive infection of many largest companies and government institutions in Ukraine, Russia, Germany, France and some other countries with a new ransomware Petya (NotPetya). In most cases, after its penetration into a corporate network Petya quickly spread to all computers and.. read more

How to Disable NetBIOS Over TCP/IP and LLMNR Using GPO

Posted on December 4th, 2017 · Posted in Group Policies, Security
disable netbios using powershell script on gpo

Using obsolete protocols without explicit need may become a potential security flaw in any computer network. In this context, the recent buzz over WCry ransomware is showcase, and the easiest way to protect against it was to stop using the obsolete SMBv1 protocol by completely disabling it. Broadband protocols, like.. read more

How to Extract Windows User Passwords from Hiberfil.sys

Posted on April 22nd, 2015 · Posted in Security
Get plaintext Windows users passwords from hiberfile.sys

Mimikatz, a tool that allows to extract Windows credentials  as plain text from LSA, is available since 2012. However, besides a well-covered feature of recovering passwords from the memory of a running OS, it has another interesting capability. Further a step-by-step instructions are given, how to easily extract the Windows.. read more