Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/aenslei/sentri

SENTRI: Securing Entry to Network Through Review and Inspection. A PowerShell-based NAC tool that I developed during my GovTech mentorship!
https://github.com/aenslei/sentri

cybersecurity device-info inspector network powershell powershell-script powershell-scripts windows windows11

Last synced: 3 months ago
JSON representation

SENTRI: Securing Entry to Network Through Review and Inspection. A PowerShell-based NAC tool that I developed during my GovTech mentorship!

Host: GitHub
URL: https://github.com/aenslei/sentri
Owner: aenslei
Created: 2024-06-06T14:07:52.000Z (7 months ago)
Default Branch: main
Last Pushed: 2024-06-30T11:08:45.000Z (6 months ago)
Last Synced: 2024-10-11T14:23:16.490Z (3 months ago)
Topics: cybersecurity, device-info, inspector, network, powershell, powershell-script, powershell-scripts, windows, windows11
Language: PowerShell
Homepage:
Size: 19.5 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: readme.md

Awesome Lists containing this project

README

# SENTRI: Securing Entry to Network Through Review and Inspection
A Network Access Control [NAC] tool to check a workplace client's security posture according to a set security posture baseline to determine whether it should be allowed to enter a company's internal network.
Developed using only Powershell and utilises the Windows Registry and information from publicly available APIs and websites.

SENTRI will go through 3 different types of checks to determine whether its client is secure enough to enter an internal network:

**1**: Network Locality
- Checks the client's geolocation through its IP Address by using a publicly available API.
--> Cross-references country of origin to the UN Sanctions List to determine if the connection request may be risky to accept.

**2**: Security Product
- Checks if the client has certain AV/Firewall/VPN products by checking the existence and properties of certain Windows Registry keys.
--> For the simplicity (and time constraint during development) of this tool, I will be focusing on checking for 3 commercial products: Windows Defender (has issues), Norton Security and ExpressVPN.
--> Uses web scraping to extract the latest versions.

**3**: Operating System
- Checks if a device has the latest Windows patch by extracting the client's current Windows Build Version.
--> Uses web scraping to extract the latest versions.

The final variable, connectToIntranet, will be either Pass/Fail. If even 1 of the checks fail, the host is deemed to be not in compliance with the security posture and thus will be unable to be connected to the internal network.

*This project was made for my GovTech Singapore Girls in Tech Mentorship Program! Thank you to my mentor, Pei Chern, for all her guidance. ◕◡◕*