Alternate Data Streams: A Complete Overview

  • by CJ Ledesma

Alternate Data Streams (ADS) in the NTFS file system allow data to be hidden within regular files—making them a powerful yet often exploited feature in Windows environments. In this guide, uncover how ADS in Windows works, why it poses a serious cybersecurity risk for IT teams, and how attackers use data hiding in Windows files to compromise systems. Learn how to detect ADS using tools like Sysinternals Streams, PowerShell commands, and advanced forensic tools for NTFS.

Read the full blog on Alternate Data Streams: An Overview

Never miss a NinjaOne video!

Subscribe
  Back to Video Library
in this video
    • Recent
    • From the series
    • IT Ops

    Alternate Data Streams: A Complete Overview

    8 Common Network Issues & How to Address Them

    How to Fix Broken Debian Packages: A Step-by-Step Guide

    How to Fix Notepad++ Crash After Startup

    Insider Tips Using GPO to Set Default Browsers

    How to Disable Internet Explorer Enhanced Security Configuration

    Alternate Data Streams: A Complete Overview

    8 Common Network Issues & How to Address Them

    How to Fix Broken Debian Packages: A Step-by-Step Guide

    How to Fix Notepad++ Crash After Startup

    Insider Tips Using GPO to Set Default Browsers

    How to Disable Internet Explorer Enhanced Security Configuration

    Alternate Data Streams: A Complete Overview

    8 Common Network Issues & How to Address Them

    How to Fix Broken Debian Packages: A Step-by-Step Guide

    How to Fix Notepad++ Crash After Startup

    Insider Tips Using GPO to Set Default Browsers

    How to Disable Internet Explorer Enhanced Security Configuration
    ×

    See NinjaOne in action!

    By submitting this form, I accept NinjaOne's privacy policy.

    Never miss a video!