An ongoing pain point on most enterprise networks is the number of Windows clients and servers that, for a variety of reasons, fail to get updated patches. As a result, when these machines are discovered, a quick Windows security review is necessary to figure out how many patches they're missing and other baseline security issues that may be in play.
In this month's SearchSecurity.com screencast, expert penetration tester Mike McLaughlin of First Base Technologies demonstrates the Microsoft Baseline Security Analyzer. He covers how to conduct a Windows MBSA scan that can quickly determine a Window machine's patch levels and other key security settings.
Want more demos of free security tools? Visit our screencast page.
About the author:
Mike McLaughlin is a penetration tester working for First Base Technologies, an information security consultancy in the UK. Mike's daily work consists of both internal and external network based penetration testing, web application penetration testing, and social engineering.