Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet
You are here
:
Home
>
Resources
>
Lectures
> Windows network services for Samba folks
Search
:
Services
Skills & Expertise
Consulting
ISO 27001 services
Vulnerabilities monitoring
Audit & Assessment
Penetration tests
Vunerability assessment (TSAR)
Technical assistance
Training courses
E-learning
Conferences
Agenda
Past events
Tutorials
Resources
Thematic index
Tips
Lectures
Courses
Articles
Tools (download)
Vulnerability watch
Company
Hervé Schauer
Job opportunities
Credentials
History
Partnerships
Associations
Press and
communication
HSC Newsletter
Press review
Press releases
Publications
Contacts
How to reach us
Specific inquiries
Directions to our office
Hotels near our office
Windows network services for Samba folks
Access to the content
Beginning of the presentation
PDF version
[389 KB]
Description
This talk given during the SambaXP 2003 conference presents how SMB/CIFS and MSRPC protocols are implemented in Windows systems.
Context & Dates
Talk made during SambaXP 2003, on 14 April 2003.
Author
Jean-Baptiste Marchand
Type
[
-
]
Also available :
PDF format
Abstract &
Table of content
Flyleaf
Agenda
SMB/CIFS architecture
SMB/CIFS transport
TCPView
NetBT and raw SMB transport
Transport configuration
net config and nbtstat
Using the redirector
net use
LSA credentials cache
Redirector sessions cache
Sessions cache internals
Multiple SMB sessions
File server administration
SMB session (IPC$)
MSRPC
Named pipes
Named pipes (Windows 2K)
Named pipes (Windows XP)
npfs aliases
npfs aliases (NT, 2K, {XP, 2K3})
DCE RPC remote management interface
ifids: named pipes endpoints
MSRPC supported interfaces
services.exe RPC services
Network authentication
Auditing on a server
Security event 540
Auditing on a domain controller
Kerberos administration
Sysinternals tools
Monitoring file systems with Filemon
Filemon: example
Monitoring registry accesses with Regmon
kd (kernel debugger)
srv.sys: SMB implementation
References
References
References
References
42!
Related documents
Windows
Windows Security
Rainbow Tables and accents characters on Windows
[31 May 2007 -
]
Workstation Security
[29 March 2007 -
]
Presentation of Alternates Data Stream (ADS) of NTFS
[28 October 2005 -
]
MSRPC NULL sessions - exploitation and protection
[29 June 2005 -
]
Windows remote administration tools overview
[15 June 2005 -
]
Windows log files
[6 June 2005 -
]
Active Directory network protocols and traffic
[4 May 2005 -
]
Minimizing Windows Server 2003 network services
[6 April 2005 -
]
Running with least privilege on Windows systems
[7 February 2005 -
]
SSLtunnel for Windows
[22 September 2004 -
]
Active Directory network protocols and traffic
[13 September 2004 -
]
Windows network services
[13 January 2004 -
]
Windows network services internals - HiverCon 03
[6 November 2003 -
]
Windows network services internals
[22 October 2003 -
]
Security model of Windows systems
[14 October 2002 -
]
Minimization of network services on Windows systems
[2 September 2002 -
]
Windows systems network services - Case study with Windows 2000 and Windows XP
[6 June 2002 -
]
Minimizing network services on Windows systems
[3 June 2002 -
]
Remote administration of Windows systems (Part 2) - rpcclient
[18 February 2002 -
]
Remote administration of Windows systems (Part 1) - SSH
[19 November 2001 -
]
IP filtering and IPsec in Windows 2000
[7 September 2001 -
]
Microsoft & Security: Beware Danger
[13 March 2001 -
]
Windows NT network flows
[24 September 1998 -
]
NT4 registers related to security
[April 1998 -
]
Copyright
© 2003, Hervé Schauer Consultants, all rights reserved.
Last modified on 2 September 2003 at 16:52:33 CET - webmaster@hsc.fr
Information on this server
- © 1989-2010 Hervé Schauer Consultants
-
![[Course]](/gif/icone.formations.png){kind=small}
![[Presentation]](/gif/icone.supports.png){kind=small}
]
![[Tip]](/gif/icone.breves.png){kind=small}
![[Article]](/gif/icone.articles.png){kind=small}