Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/simeononsecurity/Windows-Terminal-Hardening

Scripts and Documentation for Hardening Windows Command Prompt and PowerShell
https://github.com/simeononsecurity/Windows-Terminal-Hardening

automation cmd hardening lockdown mitigation powershell powershell-script

Last synced: 3 months ago
JSON representation

Scripts and Documentation for Hardening Windows Command Prompt and PowerShell

Host: GitHub
URL: https://github.com/simeononsecurity/Windows-Terminal-Hardening
Owner: simeononsecurity
License: mit
Created: 2020-11-18T17:13:49.000Z (almost 4 years ago)
Default Branch: main
Last Pushed: 2024-07-26T23:05:58.000Z (4 months ago)
Last Synced: 2024-07-27T00:23:31.874Z (4 months ago)
Topics: automation, cmd, hardening, lockdown, mitigation, powershell, powershell-script
Language: PowerShell
Homepage: https://simeononsecurity.com/github/Windows-Terminal-Hardening
Size: 23.4 KB
Stars: 8
Watchers: 2
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE

Awesome Lists containing this project

README

# Windows-Terminal-Hardening

[![Sponsor](https://img.shields.io/badge/Sponsor-Click%20Here-ff69b4)](https://github.com/sponsors/simeononsecurity) [![VirusTotal Scan](https://github.com/simeononsecurity/Windows-Terminal-Hardening/actions/workflows/virustotal.yml/badge.svg)](https://github.com/simeononsecurity/Windows-Terminal-Hardening/actions/workflows/virustotal.yml)

Windows-Terminal-Hardening is a PowerShell script that elevates privileges and performs various Windows hardening tasks to enhance security. The script requires administrative rights to run and performs the following actions: disabling CMD and PowerShell v2, setting PowerShell Constrained Language Mode, enabling PowerShell logging, removing WSMan listeners, disabling the WSMan Service, and disabling the firewall rule for Windows Remote Management. The script outputs a message confirming the elevation of privileges.

## What does this script do?
- Disables Command Prompt
- Disables PowerShell v2
- Disables WSMAN and PSRemoting
- Enables PowerShell Constrained Language Mode
- Enables PowerShell Logging

## Recommended Reading:
- [PowerShell Best Practices](https://www.digitalshadows.com/blog-and-research/powershell-security-best-practices/)
- [PowerShell Constrained Language Mode](https://devblogs.microsoft.com/powershell/powershell-constrained-language-mode/)
- [Securing PowerShell in the Enterprise](https://www.cyber.gov.au/acsc/view-all-content/publications/securing-powershell-enterprise)
- [Windows Defender Hardening](https://github.com/simeononsecurity/Windows-Defender-Hardening)

## Download the required files:

Download the required files from the [GitHub Repository](https://github.com/simeononsecurity/Windows-Terminal-Hardening)

## How to run the script:

**The script may be lauched from the extracted GitHub download like this:**
```
.\sos-windowsterminalhardening.ps1
```

Explore the World of Cybersecurity

### Links:
- #### [github.com/simeononsecurity](https://github.com/simeononsecurity)
- #### [simeononsecurity.ch](https://simeononsecurity.ch)