Author: Matt Stacey | Page 4 | Int64 Software Blog

Hardening Website Security – Part 2: User Session Cookie Security

In this section we will be looking at how you can increase the security of user sessions on your web server, and reduce the risk of Session Hijack Attacks.

Hardening Website Security – Part 1a: HSTS Preloading

HSTS Preloading to Idenfity HTTPS Secured Websites

In part 1 of this series of articles we described the HSTS header “Strict-Transport-Security”. This header is used to tell the clients web browser that HTTP Strict Transport Security mode should be enabled so that the browser should remember that this website only uses HTTPS and should not accept any unencrypted traffic.

Hardening Website Security – Part 1: HTTP Security Headers

Storm Trooper Guarding House - HTTP Security

Introduction It feels like almost every week there’s another news item about personal information being stolen because yet another company’s website got hacked. Most of these attacks are perpetrated through social engineering, persuading somebody to hand over some detail which allows the hacker to gain additional privileges and, eventually, access to personal information. However, a…

Installing and Configuring Microsoft LAPS: A Complete Guide – Part 1

Microsoft Local Administrator Password Solution (LAPS) Installation Guide

Microsoft LAPS (Local Administrator Password Solution) is making a big splash in the Active Directory community by providing a simple, secure, and free solution to the age-old question of how to secure your Local Administrator accounts.

Separation of Duties in Software Solutions: A Case Study in Overcee

Separation (or Segregation) of Duties in business and Information Technology is a great internal process which describes restricting the power of any one individual in order to combat mistakes and fraud. R. A. Botha and J. H. P. Eloff in “Separation of Duties for Access Control Enforcement in Workflow Environments” describe SoD as: Separation of…

Tutorial: Privilege Escalation Vulnerability Scan Tool and Overcee

We previously mentioned that the free Privilege Escalation Vulnerability Scan (PEVS) Tool released last week could be perfectly combined with our Delegated Device Managements platform, Overcee. So we thought we’d delve in and show you how this simple task can be setup.

Overcee Update 18.4.3 Released

We are proud to announce the release of Overcee 18.4.3. This does not include any critical fixes or security improvements, so should be considered a non-necessary update for users who are not experiencing any of the included problems.

Free: Windows Privilege Escalation Vulnerability Scan Tool

There exist many actual and potential vulnerabilities in the Windows operating system suite which could leave your systems open to attack. While many of these are patched or mitigated when they are discovered, many still remain as “features” of the operating system. We’ve isolated four of these vulnerabilities which we feel are the most easily…

Local Administrator: To Rename or not to Rename

Aim In this post I aim to examine some of the common advice you may find on the Internet regarding the best way of securing the Local Administrator account on a Windows domain joined workstation.