Sunday, April 9, 2023

Windows 10 Hardening and audit tool (HardeningKitty)

 

You can use HardeningKitty to check your configuration and also it will provide a scoring for your reference:

HardeningKitty and Windows 10 Hardening

https://github.com/0x6d69636b/windows_hardening

 

There are TWO items you should disable : PowerShell v2 and SMB v1

Disable PowerShell v2

Disable-WindowsOptionalFeature -Online -FeatureName MicrosoftWindowsPowerShellV2Root

https://www.thewindowsclub.com/disable-powershell-v2-windows

 

 

Disable SMB v1

Disable-WindowsOptionalFeature -Online -FeatureName SMB1Protocol

https://learn.microsoft.com/en-us/windows-server/storage/file-server/troubleshoot/detect-enable-and-disable-smbv1-v2-v3?tabs=server

 

The following website provide you some advice configuration about hardening and also you can import some attack surface reduction rules:

Configure Attack Surface Reduction rules

https://www.cyber.gov.au/acsc/view-all-content/publications/hardening-microsoft-windows-10-version-21h1-workstations

 

Print Friendly and PDF
Share/Bookmark
Posted by Billy Fung at 6:06 AM
Labels: , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)