By default, Microsoft Windows NT/2000/XP/Vista/2008 share local drives and certain directories with share names like C$, D$, and ADMIN$. These shares are enabled by default and should be disabled on all workstations and servers.
As part of its IIS Security Checklist, Microsoft recommends that this feature be disabled.
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center