YubiKey support in OpenSSH for Windows 11 and Windows 10
In this post, I’ll show you how to properly install Microsoft OpenSSH client in Windows 11 and Windows 10, and how to configure your YubiKey.
Security
Quickly check EnableTrailerSupport isn’t set in your network for http.sys (CVE-2022-21907)
Find out fast if your IIS webservers have EnableTrailerSupport enabled for https.sys in the registry. Here is a small PowerShell method.
What are 4 important security measures for Windows Server & IIS 10?
When you have just installed your new Windows Server, with or without IIS as web server, it is important to take a few extra security measurements. Securing your server is important to keep hackers out and your data safe. This article provides 4 key steps in strengthening your Windows Server web (IIS) or file server security.
Exploit PHP’s mail() to get remote code execution
If you are able to control the 5th parameter of the mail() function ($options), you have the opportunity to execute arbitrary commands. Remote Code Execution (RCE) in PHP mail()
Grep for forensic log parsing and analysis on Windows Server IIS
How to use GnuWin32 ported tools like grep.exe and find.exe for forensic log file analysis in Windows Server. In this article I’ll give some real live examples of using these ported GnuWin tools like grep.exe for logfile analysis on Windows servers. The article provides three example, as an alternative to LogParser, because finding spam scripts fast is often very important.