Bestpractice Desktop Validation Scripts by EventSentry | EventSentry

PingSentry | Blog | System32 | GitHub | Free tools

EventSentry

Validation Scripts

Scripts

28

Tag

bestpractice-desktop

Accounts: Automatic logons must be disabled

5db60bfa-0318-430e-ab7e-c2ff3e749ae9

Accounts: Block Microsoft accounts

6e815a39-7aa8-42e4-88d3-1778dfe85333

Accounts: Local accounts with blank passwords must be restricted to prevent access from the network

3ef29cdc-8018-48a9-b210-13e18cf14d07

Attack Surface: Disable LLMNR

3724e477-bdea-4a74-96b7-7ac79e157087

Attack Surface: Disable WinRM (Windows Remote Management)

1c1e3c39-98a3-41cb-8bf1-1a5f36a6c950

Auditing: Command line data must be included in process creation events

c787dcd2-355b-4ff5-8265-3eb860f11670

Autoplay: Autoplay Must be turned off for non-volume devices

d2ac90ea-b1de-49bb-aa59-fe8b271c7c2b

Autoplay: should be disabled for all drives

2cb75d59-8ef3-4fa3-90e1-8bec9e51c703

Autorun: behavior must be configured to prevent Autorun commands

746184bf-3f96-4365-8bb4-c7abf8a772ac

Directory Size: WinSxs\Temp\PendingDeletes

233b6308-be50-487f-ad61-dec44a3d4402

File System: Windows must prevent Indexing of encrypted files

138956a4-8987-4f7f-b830-bf58e4ca7778

General: AntiVirus/Antimalware Status

6d48a68a-3e44-4a00-8d42-670e41c9942c

General: Windows Defender SmartScreen must be enabled (Desktop)

4d189e65-af8b-463f-95d1-3880b7c459ec

General: Windows firewall status

1f229f09-4c15-4bfe-b9f7-ed63d03cd70e

Internet Browser: Check digital signature of executables

f09f451c-2ec0-4a03-b578-637db9c8ffbf

Internet Browser: Software must be disallowed to run or install with invalid signatures

7732d84e-90be-4734-bae5-e3c6d3be7568

Local volumes must be formatted with NTFS

b6493fb9-ad83-494c-93e3-3dbfaeb9b303

Logon: Enable Display Last Logon Info

a108b75a-f851-4e02-b377-1bc6a2698949

Logon: Require CTRL+ALT+DEL for interactive logons

d2d523f6-4e7a-46e3-b553-ab395a7563e4

Microsoft Edge: SmartScreen filter must be enabled

7a337b09-3a6f-4270-8611-005b2a71cba4

Microsoft Office: Application Guard for Office should be enabled

b4297f3f-27aa-48bb-ae0c-a996d8db5b70

Network Access: Do not allow anonymous enumeration of SAM accounts and shares

752e0588-decf-451b-9fef-cc3235765d54

Network Access: LAN Manager authentication level must be configured to send NTLMv2 response only and refuse LM and NTLM

2718ea3f-5f25-4e6d-a693-3c426f14357f

PowerShell: Script block logging must be enabled

ab3e18c8-5f9b-4a08-8474-ff10619965bd

Tracking: Windows Telemetry must not be set to Full

0001b667-c79a-4486-802c-32d860cae99e

Windows OS: Build Version Check (End Of Life)

07b6c273-cdb3-4a4d-889d-d1d54dc0eb5f

Windows OS: Build Version Check (OS Updated)

c7b058ab-6360-4b5d-9cd2-45eafef8c489

Windows OS: Windows Activation Status

de96957d-bcf1-4d41-be46-aa14b00135f3

Full tag list

compliance-server (118) compliance-desktop (100) server (99) stig-medium-server (94) security-server (93) desktop (92) security-desktop (78) stig-medium-desktop (74) nist800-171-server (50) nist800-53-server (45) nist800-171-desktop (36) nist800-53-desktop (36) cmmc2-l2-server (34) bestpractice-desktop (28) cmmc2-l2-desktop (25) bestpractice-server (22) stig-high-desktop (18) stig-high-server (18) cmmc2-l1-server (18) cmmc2-l1-desktop (16) domaincontroller (15) domainmember (13) pci-dss-v4-server (12) cis-csc-server (11) cis-csc-desktop (10) sig-server (8) pci-dss-v4-desktop (8) nist-privacy-server (8) remote-desktop (7) csa-cmm-server (6) privacy-desktop (6) pci-dss-v3.2-server (6) nist-privacy-desktop (6) privacy-server (6) health (6) stig-medium-ie (4) domaincontroller-bestpractices (4) niap-server (4) cmmc2-l3-server (4) stig-low-desktop (4) niap-desktop (4) fips140-2 (3) sig-desktop (3) stig-low-server (3) cve-server (3) threat-intel (3) pci-dss-v3.2-desktop (2) sec-hardening-server (2) sec-hardening-desktop (2) mitre-desktop (2) msoffice (2) threat-intel-server (2) cce-server (2) domaincontroller-health (2) cve-desktop (2) cmmc2-l3-desktop (2) cce-desktop (2) exchange-security (1) threat-intel-desktop (1) csa-cmm-desktop (1) info-desktop (1) csf-desktop (1) csf-server (1) ul2900-1-desktop (1) ul2900-1-server (1) cjis-desktop (1) cjis-server (1) fedramp-desktop (1) fedramp-server (1) mitre-server (1) hyper-v (1) iis-stig-high (1)

CMMC v2.0 Compliance STIG CIS NIST 800-171 Servers Desktops