Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/simeononsecurity/Windows-Hardening-CTF
A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
https://github.com/simeononsecurity/Windows-Hardening-CTF
automation ctf ctf-tools hardening security windows
Last synced: 3 months ago
JSON representation
A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
- Host: GitHub
- URL: https://github.com/simeononsecurity/Windows-Hardening-CTF
- Owner: simeononsecurity
- License: mit
- Created: 2020-10-19T16:02:13.000Z (about 4 years ago)
- Default Branch: main
- Last Pushed: 2024-07-26T23:08:55.000Z (4 months ago)
- Last Synced: 2024-07-27T00:24:49.132Z (4 months ago)
- Topics: automation, ctf, ctf-tools, hardening, security, windows
- Language: PowerShell
- Homepage: https://simeononsecurity.com
- Size: 1.03 MB
- Stars: 22
- Watchers: 2
- Forks: 9
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE
Awesome Lists containing this project
README
# Windows-Hardening-CTF
[![Sponsor](https://img.shields.io/badge/Sponsor-Click%20Here-ff69b4)](https://github.com/sponsors/simeononsecurity)
A windows hardening script that makes it difficult and more annoying to compromise a Windows device.
## What does this script do?
- Disables Command Prompt
- Disables LLMNR
- Disables PowerShell v2
- Disables SMB Compression
- Disables SMB v1
- Disables SMB v2
- Disables TCP Timestamps
- Disables WSMAN and PSRemoting
- Enables AppLocker with NSA Recommended Policies
- Enables Best practice Windows Logging and Security Controls
- Enables DEP
- Enables EMET Configurations (Only applies to systems with EMET installed)
- Enables PowerShell Constrined Language Mode
- Enables PowerShell Logging
- Enables SMB Encryption
- Enables Spectre and Meltdown Mitigations
- Enables Windows Defender Application Control
- Enables Windows Defender Attack Surface Reduction Procections
- Enables Windows Defender Cloud-based Protections
- Enables Windows Defender Exploit Protections
- Enables Windows Firewall and Logging
- Installs PSWindowsUpdate and Installs all Available Windows Updates## Download the required files:
Download the required files from the [GitHub Repository](https://github.com/simeononsecurity/Windows-Hardening-CTF)
## How to run the script:
**The script may be lauched from the extracted GitHub download like this:**
```
.\sos-windows-hardening-ctf.ps1
```
Explore the World of Cybersecurity
### Links:
- #### [github.com/simeononsecurity](https://github.com/simeononsecurity)
- #### [simeononsecurity.ch](https://simeononsecurity.ch)