Securing Your Windows Platform
This session demonstrates tools that can be used right away to improve the security posture of Windows clients and servers on the Internet, such as: Enhanced Mitigation Experience Toolkit (EMET) – TWC tool for mitigation against malware exploit techniques for applications,AppLocker – Built-in Windows 7 technology to enforce application whitelists and blacklists,Security Compliance Manager (SCM) – applying a security template from Security Compliance Manager (SCM),Attack Surface Analyzer Beta (ASA) – TWC tool to report attack surfaces and provide baseline deltas of a Windows installation. Most of the time is spent on AppLocker and Attack Surface Analyzer. Attendees are encouraged to download the EMET, ASA and SCM tools ahead of time into a Windows 7 VM in Virtual PC to follow along during the session. The session focuses on securing Windows 7 and Windows Server 2008 R2, though techniques and tools are applicable to prior releases.