In this last part of my AppLocker series, I explain how you can harden AppLocker. Although AppLocker can dramatically...
If you haven't done so already, you should first read my previous AppLocker article, where we created our AppLocker...
In my last post, I discussed some AppLocker best practices and concluded that you have to start with gathering...
In my last post, I explained why I prefer AppLocker whitelisting over blacklisting. In this article, I will describe...
I have deployed AppLocker for hundreds of thousands of computers and customers ranging from a nuclear plant and military-level...
When an error is escalated, one of the most common requests is to get a full memory dump of...
How to access the SAM and SECURITY hives in the Registry using the SYSTEM account
deployment, security 1
Many people think the built-in Administrator account is the most powerful account in Windows, which is not true. If...
When it comes to troubleshooting end-user PCs, you often have to deal with cryptic error messages with unknown error...
To start any troubleshooting case, I always ask for two things. I ask for a Process Monitor trace, which...
When I need to troubleshoot a problem in Windows, the first things I ask my customer to provide are...
How to access a user’s Windows desktop without knowing their password
password, security, windows 10 52
When it comes to troubleshooting a running application on a user's Windows desktop, the first problem you face is...
Hacking admin rights on an Autopilot-installed Windows device (Return of the Shift + F10)
deployment, security 26
In this post, I will reveal a security flaw in Autopilot, Microsoft's new solution to deploy Windows machines to...
