Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/simeononsecurity/windows-hardening-ctf

A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
https://github.com/simeononsecurity/windows-hardening-ctf

automation ctf ctf-tools hardening security windows

Last synced: 6 days ago
JSON representation

A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.

Host: GitHub
URL: https://github.com/simeononsecurity/windows-hardening-ctf
Owner: simeononsecurity
License: mit
Created: 2020-10-19T16:02:13.000Z (about 4 years ago)
Default Branch: main
Last Pushed: 2024-07-26T23:08:55.000Z (4 months ago)
Last Synced: 2024-08-25T22:45:25.639Z (3 months ago)
Topics: automation, ctf, ctf-tools, hardening, security, windows
Language: PowerShell
Homepage: https://simeononsecurity.com
Size: 1.03 MB
Stars: 25
Watchers: 2
Forks: 12
Open Issues: 0
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE

Awesome Lists containing this project

README

# Windows-Hardening-CTF

[![Sponsor](https://img.shields.io/badge/Sponsor-Click%20Here-ff69b4)](https://github.com/sponsors/simeononsecurity)

A windows hardening script that makes it difficult and more annoying to compromise a Windows device.

## What does this script do?
- Disables Command Prompt
- Disables LLMNR
- Disables PowerShell v2
- Disables SMB Compression
- Disables SMB v1
- Disables SMB v2
- Disables TCP Timestamps
- Disables WSMAN and PSRemoting
- Enables AppLocker with NSA Recommended Policies
- Enables Best practice Windows Logging and Security Controls
- Enables DEP
- Enables EMET Configurations (Only applies to systems with EMET installed)
- Enables PowerShell Constrined Language Mode
- Enables PowerShell Logging
- Enables SMB Encryption
- Enables Spectre and Meltdown Mitigations
- Enables Windows Defender Application Control
- Enables Windows Defender Attack Surface Reduction Procections
- Enables Windows Defender Cloud-based Protections
- Enables Windows Defender Exploit Protections
- Enables Windows Firewall and Logging
- Installs PSWindowsUpdate and Installs all Available Windows Updates

## Download the required files:

Download the required files from the [GitHub Repository](https://github.com/simeononsecurity/Windows-Hardening-CTF)

## How to run the script:

**The script may be lauched from the extracted GitHub download like this:**
```
.\sos-windows-hardening-ctf.ps1
```

Explore the World of Cybersecurity

### Links:
- #### [github.com/simeononsecurity](https://github.com/simeononsecurity)
- #### [simeononsecurity.ch](https://simeononsecurity.ch)