Using File Monitoring to Limit Admin Rights

James TaralaAdmin Rights, Critical Security Controls, Tools

Over the past few weeks we have been posting blogs about the importance of limiting user account rights to only what is necessary for someone to do their job. Users should have all the rights necessary to do their job, but nothing less and certainly not any more. This includes local administrator rights. Only the people that absolutely need those … Read More

Community PowerShell Security Audit Scripts

James TaralaScripting, Tools, Windows Auditing

Back in December we posted a couple scripts that fellow auditors had pointed out to us that helped auditors dump Microsoft Windows file permissions to a CSV file for easier auditing. As a result of that post we’ve had feedback from a number of people that it would be helpful to see more of these scripts and even some suggestions … Read More

Sensors for the Critical Security Controls

James TaralaCritical Security Controls, Tools

Most people in information security have heard of the Critical Security Controls these days. The idea of a community risk assessment project that helps all prioritize our information security efforts is appealing to most of us. The sticking question everyone always comes back to though is “how do I start implementing an information security plan using the controls?” There are … Read More

Practical Risk Assessment Tools

James TaralaRisk Assessment, Tools

In a previous blog post we cataloged a number of risk management methodologies that we’ve seen a number of organizations employ in an effort to manage the security of their information systems. A number of people have asked us though, what tools best assist people implementing those models? Are there tools available to make the process easier or do companies … Read More

Comparing Text Files in Windows

James TaralaBaselining, Tools, Windows Auditing

So last month we wrote a post about the built in capabilities of Microsoft Windows to be able to perform comparisons of two text files. Personally when I am comparing two files I am concerned that I can do it from the command line, can easily automate the comparison, and that the output is easy to parse and understand. Built … Read More