Change the remote desktop port on server/desktop

RDP(Remote Desktop Protocol) is a proprietary protocol developed by Microsoft. When you connect the computer, the remote desktop feature  "listen" the connection request by default on port 3389.

You can change the RDP listening port on Windows computers/servers by modifying the registry. Use the below steps to change the default RDP port.

• Start the registry editor (Type regedit in the Search box.) or type regedit in Run and click on OK.
• Navigate to the following registry subkey:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber

• Click Edit > Modify, and then click Decimal. 
• Type the new port number above 1024, and then click OK. 
• Close the registry editor, and restart your computer/server.

After a restart, you may connect using the new RDP Port. If the firewall is running, make sure to configure your firewall to allow connections to the new port number. 

To connect the RDP using the new port, you need to enter IPADDRESS:PORT in computer address.

For security reasons, it's better to change the default RDP port and whitelist the IP address in your firewall for the RDP connection.

How to find Wi-Fi password

You can find WiFi password on windows computer of currently connected WiFi network or previously connected WiFi network.

You can find the connected WiFi password using "Network and Sharing Center" or "using command prompt".

Using Network and Sharing Center

You may open Network and Sharing center by going into control panel. You can easily do this by right click on Wireless Network icon in taskbar and click on "Open Network and Sharing Center".

Now click on connected WiFi.

Click on "Wireless Properties" in "Wi-Fi Status" Window.

Click On the "Security" Tab and enable the "Show Characters (Check Box)" to view the password.

Using Command Prompt

Using command prompt you may able to find any previously connected WiFi password.
You need to open command prompt with admin rights. Then Type below command.

  netsh wlan show profiles

It will list the all previously connected WiFi network. To find the password of particular profile type below command with replacing the profilename with profile.

  netsh wlan show profile name=profilename key=clear

Above command list all setting related to particular profile. Look for the "key content" to find the WiFi password for selected WiFi Network.

Action to be taken to avoid WannaCry ransomware

Most of people are aware about The WannaCry Ransomware Attack. Rasmoware will encrypt your files and make them inaccessible and demand a ransom payment to decrypt them. 

The ransomware, known by the names “WCry”, “WannaCry” and “WannaCryptor”, targets a vulnerability in Windows SMB service that was patched in Microsoft bulletin MS17-010 in March this year. Once WannaCry enters a network, it can spread around to other computers on that same network, a typical trait of ransomware that maximizes the damage to companies and institutions.

WannaCry has infected more than 100 countries, bringing essential businesses to a halt. It is the biggest coordinated cyber attack of its kind, impacting numerous organisations.  

Prevention is the best option to avoid such a attacks. I have listed below precaution to avoid such a attacks.

• Patched your system/server with microsoft MS17-010 update.

• Block the TCP port 445, 137, 138, 139 in firewall.

• Make sure you system is updated with latest antivirus definitions.

• Don’t open any mail in Spam or Mail which has come from Unknown Source.

• Download software only form OEM site.

• Turn on protected file sharing.

• Block the TCP port 445, 137, 138, 139 in firewall.

• Disable autorun (USB/USB).

• Turn on popup blocker in browser.

• Avoid giving unnecessary administrative rights to user.

For more information you may visit below sites.

• https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
• http://blog.talosintelligence.com/2017/05/wannacry.html
• https://www.symantec.com/security_response/writeup.jsp?docid=2017-051310-3522-99&tabid=3

How to get hostname or MAC address using IP address of the system

Sometime you need to find hostname or mac address of the system for security purpose. You may find this using command "nbtstat" without physically present at required computer in your network.

To find hostname or mac address of system you must know the ip address of the system.Use below command to find

nbtstat -a IP address of the remote system

suppose you want to find hostname and mac address of  the system which is having ip address 172.16.16.16. You need to use command nbtstat -a 172.16.16.16 and output of command shown below.

Block website using Host file

It`s a simple way to block website using hosts file. In windows 7 it`s located at "C:\Windows\System32\drivers\etc". Hosts file contain ip address and hostname. 

To edit host file you must have administrative privilege.

• Open notepad with  administrative privilege. Click on start > All Programs> Accessories. In Accessories right click on notepad and click on "Run As Administrator".

• In Notepad click on File menu and Click on Open..(Ctrl + O). Now browse for host file with above path and open the "hosts" File. You may also drag and drop hosts file on notepad.

Note : Hosts file contain ip address and hostname. Lines starting with d character are commented line and which is ignore by the system.

• Suppose you want to block website abc.com then add line like "127.0.0.1 abc.com" in hosts file. IP address 127.0.0.1 is IPV4 loopback address. "localhost" resolves to the loopback address. That means you mapped abc.com to your system so you cant access to abc.com.

How to Create Password Protected RAR

To Lock the RAR do following.

• Make the RAR of Folder or File you want to protect.
• Suppose you want to protect Folder with name DIGNESH. Right Click on folder and make it RAR.

• Now Open DIGNESH.rar and Click on File Menu.
• Now Click on Set Default Password or Press Cltr + P.

• Enter your desire Password and Check all Check Box and click on Ok.

• Now click on Commands in menubar and in Commands, click on Lock archive or press Alt + L.

• Set Percentage of archive size to 10 and click on Ok.

• Close the DIGNESH.rar and open once again DIGNESH.rar. Its require password to open it.

• To open the DIGNESH.rar just enter your password and click on Ok.

Prohibit Access to Drives From My Computer

To stop access to your Drive do following step.

• First goto Run, then type gpedit.msc and click on Ok. It will open the Group Policy wizard.
   
   
  
  
  

• Now select Windows Explorer In User Configuration > Administrative Templates > Windows Components.
  
  
  

• Now in right side setting wizard click on Prohibit access to the drives from My Computer. A  new wizard shown. 

• Suppose we want to prevent access to  C Drive. Select Enable radial button and select Restrict C Drive only from drop down list and Click on Apply and Ok.

•  Now run command gpupdate. 

 

Hide Local Drive Partition Using Command Prompt

Sometimes it's necessary to hide your HDD Partition for security reason. For this do following step.

1. Press Windows Key + R to open Run.
   
2. Now type cmd into run and click on OK to open Command Prompt.
   
3. Command Prompt Windows appears. Type command diskpart and press Enter.
4. Type list volume to list number of drive on your Computer.
   
5. Suppose I want to hide disk partition G. For that i will type command selecet volume G into command prompt and press Enter Key.
   
6. To hide drive G type command remove letter G and press Enter.
   
7. After step 6 hard drive G will disappear form drive list as shown in below image.
   
   
   
   

 How to Un-Hide your Local Drive with Windows CMD

1. Follow step 1-4 explained above, now select the volume which  hide by typing select volume G into the command prompt and then press Enter key.
2. To do this type select volume 7 and press Enter. Now type assign letter G to make visible hidden drive G.
   

Is your Password Strong?

A Strong password is require for your online account. It will help you to make your account strong and stop unauthorized access to your account. Here i have mention some tips to create strong password which will help you to make safe online transaction.

• Don't use your personal information like mobile number, date of birth, vehicle registration number as a password.
• Ensure that your password must be six character long.
• Use combination of lower case, upper case latter, digit, special symbol to make your password.
• Change your password regular interval.

 To check your password Click Here.

Prohibit Access to Control Panel

To stop access to your control panel do following step.

• First goto Run, then type gpedit.msc it will open the Group Policy.

• Now select Control Panel In User Configuration > Administrative Templates
  
  
  

  

  
  

  ·         Now in Control Panel click on Prohibit access to the control panel,then Enable it. Click on Apply and Ok

  
  
  For more information see following video.