Analysis and Evaluation of the Windows Event Log - Bill Buchanan

More documents

Recommendations

Info

Appendix C: Client Application Code
C:\Documents and Settings\Barrie\My ...-aes\simpletcpclient2-aes\Program.cs using System; using System.Net; using System.Net.Sockets; using System.Text; using System.IO; using System.Diagnostics; using System.Security.Cryptography; using System.Text.RegularExpressions; using System.Security.Principal; 1 public class SimpleTcpClient { public static void Main() { GlobalClass.myCount = 0; GlobalClass.user = WindowsIdentity.GetCurrent().Name; Console.WriteLine("Enter a key"); GlobalClass.key = Convert.ToString(Console.ReadLine()); // Generate AES Keys AES.passPhrase = Generate(40, 60); // Random Length between 40-60 AES.saltValue = Generate(40, 60); // Random Length between 40-60 AES.hashAlgorithm = "SHA1"; // can be "MD5" AES.passwordIterations = 2; // can be any number AES.initVector = Generate(16, 16); // RFixed Length of 16 AES.keySize = 256; // can be 192 or 128 // Connect to server connecttoserver(); // Create a new FileSystemWatcher and set its properties. FileSystemWatcher watcher = new FileSystemWatcher(); watcher.Path = "c:\\Test\\"; watcher.NotifyFilter = NotifyFilters.LastAccess | NotifyFilters.LastWrite | NotifyFilters.FileName | NotifyFilters.DirectoryName; watcher.Filter = "*.*"; watcher.IncludeSubdirectories = true; // Add event handlers. watcher.Changed += new FileSystemEventHandler(OnChanged); watcher.Created += new FileSystemEventHandler(OnChanged); watcher.Deleted += new FileSystemEventHandler(OnChanged); watcher.Renamed += new RenamedEventHandler(OnRenamed); // Begin watching. watcher.InternalBufferSize = 131072; //128 KB watcher.EnableRaisingEvents = true; // Create 2nd FileSystemWatcher and set its properties. FileSystemWatcher watcher2 = new FileSystemWatcher(); watcher2.Path = "c:\\Test 2\\"; watcher2.NotifyFilter = NotifyFilters.LastAccess | NotifyFilters.LastWrite | NotifyFilters.FileName | NotifyFilters.DirectoryName; watcher.Filter = "*.*"; watcher.IncludeSubdirectories = true; // Add event handlers. watcher2.Changed += new FileSystemEventHandler(OnChanged); watcher2.Created += new FileSystemEventHandler(OnChanged); watcher2.Deleted += new FileSystemEventHandler(OnChanged); watcher2.Renamed += new RenamedEventHandler(OnRenamed); // Begin watching. watcher2.EnableRaisingEvents = true; while (true) { Console.WriteLine("Enter message to send"); string message = Convert.ToString(Console.ReadLine()); if (message == "exit") break; sendmsg(message); }
Page 1 and 2:
Analysis and Evaluation of the Wind
Page 3 and 4:
Barrie Codona, BSc (Hons) Network C
Page 5 and 6:
Page 7 and 8:
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38: Barrie Codona, BSc (Hons) Network C
Page 75 and 76: Appendix A: Diary Sheets
Page 77 and 78: NAPIER UNIVERSITY SCHOOL OF COMPUTI
Page 85 and 86: Appendix B: Preliminary Gantt Chart
Page 87: Nov '07 Dec '07 Jan '08 Feb '08 Mar
Page 91 and 92: C:\Documents and Settings\Barrie\My
Page 95 and 96: Appendix D: Server Application Code
Page 99 and 100: Appendix E: Event Viewer Code
Page 105 and 106: Appendix G: Processor Monitor Code
Page 107 and 108: Appendix H: HMAC Brute Force Cracke
Page 113 and 114: Appendix I: Windows Event Log Tests
Page 115 and 116: Copy Security Log C:\windows\system
Page 117 and 118: Another look at the Security Log re
Page 119 and 120: The Event Service is then restarted
Page 121 and 122: Another look at the ‘c:\windows\s
Page 123 and 124: CO42019 - Project 4 Computer Name P
Page 125 and 126: CO42019 - Project 4 Turned off the
Page 127 and 128: CO42019 - Project 4 And then restar
Page 129 and 130: CO42019 - Project 4 Modify the ‘l
Page 131 and 132: CO42019 - Project 4 Project - Week
Page 137 and 138: CO42019 - Project 4 As previously d
Page 139 and 140:
CO42019 - Project 4 The screenshot
Page 141 and 142:
CO42019 - Project 4 Displaying the
Page 143 and 144:
CO42019 - Project 4 Modifying the r
Page 145 and 146:
CO42019 - Project 4 Master File Tab
Page 147 and 148:
CO42019 - Project 4 Modify the sect
Page 149 and 150:
CO42019 - Project 4 Sectors 3748520
Page 151 and 152:
CO42019 - Project 4 This now shows
show all

Analysis and Evaluation of the Windows Event Log - Bill Buchanan

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?