Chapter 5 - Attacking a System Flashcards
HKEY_LOCAL_MACHINE (HKLM)
Contains information on hardware (processor type, bus architecture, video, disk I/O, and so on) and software (OS, drivers, services, security, and install applications)
HKEY_CLASSES_ROOT (HKCR)
Contains information on the file associations and Object Linking and Embedding (OLE) classes
HKEY_CURRENT_USER (HKCU)
Contains profile information for the user currently logged on. Information includes user-level preferences for the OS and applications.
HKEY_UESRS (HKU)
Contains specific user configuration information for all currently active users on the computer.
HKEY_CURRENT_CONFIG (HKCC)
Contains a pointer to HKEY_LOCAL_MACHINES\SYSTEM\CurrentControlSet\CurrentControlSet\Hardware Profiles\Current, designed to make accessing and editing this profile information easier.
Key Distribution Center
Makes up the Authentication Service (AS) and the Ticket Granting Service (TGS) of Kerberos.
/
A forward slash represents the root directory.
/bin
The bin directory holds numerous basic Linux commands (a lot like the C:\Windows\System32 folder in Windows.)
/dev
This folder contains the pointer locations to the various storage and input/output systems you will need to mount if you want to use them, such as optical drives and additional hard drives or partitions. Note that everything in Linux is a file.
/etc
The etc folder contains all the administration files and passwords. Both the password and shadow files are found here.
/home
The folder holds the user home directories.
/mnt
This folder holds the access locations you’ve actually mounted.
/sbin
Another folder of great importance, the system binaries folder holds more administrative commands and is the repository for most of the routines Linux runs (known as daemions)
/usr
Amazingly enough, the usr folder holds almost all the information, commands, and files unique to the users.
