Computer hacking concepts extend to every nook and cranny of what we work with on a daily basis. Front and center are Windows-based servers. A large part of what I do in my work performing internal security vulnerability assessments – a.k.a. pen tests and audits – involves Windows servers. There’s so much you can do to build up Windows server security and so much you can take to bring it down. I recommend both approaches. Here are two pieces I’ve written that cover each:
The very best Sysinternals tools for Windows server security