An open API service indexing awesome lists of open source software.

https://github.com/hockeyinjune/check-security

checksec for Windows
https://github.com/hockeyinjune/check-security

security verification windows

Last synced: about 2 months ago
JSON representation

checksec for Windows

Awesome Lists containing this project

README

          

# Check-Security

Written in the style of [checksec.sh](https://www.trapkit.de/tools/checksec.html) for Linux.
Check-Security is a simpler view of the current state of the exploit mitigation settings on your machine.

Microsoft [deprecated EMET](https://support.microsoft.com/en-us/help/2458544/the-enhanced-mitigation-experience-toolkit) and added
[that exploit mitigation functionality](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-exploit-guard/exploit-protection-exploit-guard),
now called [Windows Defender Exploit Guard](https://www.microsoft.com/security/blog/2017/10/23/windows-defender-exploit-guard-reduce-the-attack-surface-against-next-generation-malware/),
into Windows 10.

## Use

Run `Check-Security` with the same parameters you would use with `Get-ProcessMitigation`.

Run without parameters to system defaults.

```
.\Check-Security.ps1
```

Run with parameters like this to get settings for specific processes.

```
.\Check-Security.ps1 -Name iexplore.exe
```

## Output

For each exploit mitigation `Check-Security` will output "On", "Off", "On (default)", "Off (default)", or "Unexpected value!".

```
Category:
Specific Mitigation (More details or Abbreviation) [CmdletName]: Result
```

You can use the `CmdletName` to change the exploit mitigation settings with `Set-ProcessMitigation`.

```
Set-ProcessMitigation -System -Enable CmdletName
```

## Screenshot

![screenshot](screenshot.png "Screenshot")

## References

* [Customize exploit protection](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-exploit-guard/customize-exploit-protection)
* [Protect devices from exploits](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-exploit-guard/exploit-protection-exploit-guard)
* [Enable exploit protection](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-exploit-guard/enable-exploit-protection)