AD – Securing Domain Controllers / hardening Windows domain and computers

Reference articles to secure a Windows domain: Pingcastle: to audit an AD domain AD explorer (sysinternals): Microsoft audit Policy settings and recommendations: Sysinternals sysmon: to audit and control changes!2843&ithint=file%2cpptx&app=PowerPoint&authkey=!AMvCRTKB_V1J5ow On Beyond domain admins: Gathering AD data with PowerShell: Hardening Windows computers, secure Baseline check list: reading “AD – Securing Domain Controllers / hardening Windows domain and computers”

DNS: Security hardening

How to improve Windows DNS security (hardening): Resources: DNS logging (audit and analytics): Secure DNS Deployment Guide: DNS security part 1: DNS security part 2: Understand man in the middle attack: External DNS Server Hardening: Note: Root hints are used to let the DNS server know where to startContinue reading “DNS: Security hardening”