Here is where you can find more information. We can't discuss everything here, but we can point to other places where others discuss more than a reader could possibly want to know.
http://www.technet.com
http://www.cisecurity.org
http://www.csrc.nist.gov/
http://www.sysinternals.com/
http://www.ss64.com
Every auditor should read this concise rundown of important tips and tricks for Windows hosts: http://www.microsoft.com/technet/community/columns/profwin/ pw0902.mspx.
http://www.networkclue.com/os/Windows/commands/index.aspx
http://www.windowsnetworking.com/kbase/WindowsTips/Windows2003/AdminTips/ Admin/LaunchAdminToolsfromtheCommandLine.html
http://www.eeye.com
http://www.nessus.org
http://www.keepass.sourceforge.net
Learn about the Windows firewall: http://www.technet2.microsoft.com/WindowsServer/ en/Library/1033.mspx?mfr=true.