MS Windows Settings contents.gifindex.gif

MS Windows Settings

Configures checks for NetBIOS and Windows NT vulnerabilities.

Registry Access: Checks for registry access and permissions settings. See Windows NT Registry , Windows NT Local Security Authority

Event Log Access: Tests if the event logs can be opened. See Windows NT Event Log

Report NT version info: Checks the registry for versions of NT known to have vulnerabilities. See Windows NT 4.0 beta , Microsoft cd .. Bug.

Remote Access Check: Checks for remote access services. See Windows NT Remote Access Service.

NT Service List: Requires administrator-level access, and tests for several vulnerable services. See Windows NT Network Monitor, Windows NT Rsh Service, Windows NT Schedule Service, Windows NT Remote Access Service.

Lockout count check: Tests for account lockout after too many failed login attempts. See Windows NT No Lockout Enabled.

Min. Password Length: Tests if the minimum password length is less than 6. See Windows NT Minimum Password Length.

ScanAlways: Attempts all NetBIOS and NT checks even if the NetBIOS name table could not be read.

Guest Enabled: Checks if the guest account is enabled. See Windows NT Guest Account Enabled.

Guest Password Check: Tests if the guest account password has been set. See Windows NT Guest Account - No Password.

Administrator ID check: Determines if an account named administrator exists, and if so checks to see if the password has been set. See Windows NT Administrator Account, Windows NT Administrator - No Password.

Password Permutations: Attempts every possible 4 letter combination of passwords against a NetBIOS share. Note: This test can take several hours. See Password Permutations

Shares: Reports all NetBIOS shares found and tests for proper access control. See NetBIOS Share.

Check Share Passwords: Attempts all passwords found in the words file in your installation directory. It is a plain text file, which allows you to add your own passwords. See Check Share Passwords

Search for *.pwl files: If a share is open, searches for cached password files. See Microsoft Network Client Password Cache.

Send Popup Message: Sends a pop-up message to inform the user of the scanned machine that the scan is taking place. See Alerter Service.

Popup Message: Sets the message text. A maximum of 256 characters is allowed.