Online Windows Security Log Encyclopedia Free

SecurityProNews
Staff Writer
2005-03-12

For the first time in the history of the Windows operating system, Information Technology professionals have an authoritative resource to fully leverage Window's notoriously cryptic security log.

IT managers and their staffs now have the Windows Security Log Encyclopedia, a new Windows tool for monitoring, intrusion detection and for carrying out computer forensics. The new tool covers all nine audit categories of Windows Server 2003 and illuminates the subtle, yet critical, differences between Windows Server 2003, 2000, and XP regarding security events. It documents each security event in the Windows OS, complete with valuable analysis and commentary.

Surprisingly, this valuable tool is freely available online at www.ultimatewindowssecurity.com.

The security encyclopedia is provided by Randy Franklin Smith, CEO of Monterey Technology Group.

According to Smith, "The Windows security log is vital to successfully monitor all aspects of Windows security. However, its may be the most poorly documented area of Windows 2000 and Windows Server 2003. For most security events, the documentation simply restates the static text related to the event. It also contains many inaccuracies. There is insufficient guidance and very little background information, with most events described in context with others. There are no suggested courses of remedial action.

"Further, event IDs and codes vary from one Windows version to the next, making security log knowledge even more obscure and complicating the design of programs that monitor the security log."

Commenting on the techniques used to develop the tool, Smith added, "I have reverse-engineered every event ID in the security log, along with the codes and other detailed fields within each event. I provide an understanding of how one security event relates to another. I've also linked user-level and administrator-level actions with patterns of events. Now, IT personnel can understand all the details provided by the security logs."

Smith has provided design consultation to developers of event log monitoring products and written more than a dozen articles on the subject, several of which now reside on Microsoft's TechNet Web site. The Windows Security Log Encyclopedia serves as an on-online venue for sharing the results of his research to help companies perform effective monitoring and intrusion detection, saving the potentially ruinous costs of IT security lapses.

About the Author:
SecurityProNews is a daily online and email publication focusing on internet security issues.

More news_security_news Articles

Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Featured On:

article resources

WebProWorld.com

•	Get in-touch with industry experts and leaders
•	Post your site for review by expert and peers
•	Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com


Titan Quest Forum The #1 Titan Quest forum
Halo 3 Forum The best Halo, Halo 2, Halo 3 forum
Nintendo Wii Nintendo Wii news and views
Mac Software The best in OS X freeware
Graphics Forum Your source for graphic tutorials