These last few weeks I've had to work on a Windows 7 box to generate some audit trails. Holy cow! It was a shock to my system.
o Want to ssh, scp, or sftp out of Windows? You have to find some software on the Internet and install it.
o Want to have a command-line version like tar? You need to find some software on the Internet like WinZIP or WinRAR, download, and pay $29 for it!
o Want to ssh into your box? You need to find sshd server software on the Internet, download it, and pay like $99 for it.
These little add-ons cost more than our entire operating system! I never appreciated that little "Remote Login" check-box under the Mac's Sharing System Preference before. So easy.
So take a moment today and love your Mac.
By the way, this is what I've been working on. Seems strange to see Windows' file paths inside a Mac application
Sneak Peak: Analyzing Windows EVTX Logs
http://www.netsq.com/Tools/AuditExplorer/SneakPeak/
This is a sneak peak of Audit Explorer analyzing Windows EVTX logs (Windows' audit trail). For this preview we focus on the attacks that traditional network IDS/firewalls and AntiVirus software have troubles with — use of multiple layers
of encryption on the network, moving laterally within an organization, and the use of standard (non-malware) tools.
Todd