This script performs a comprehensive security analysis of your Windows system by running 22 crucial checks. It's designed to help system administrators and security professionals ensure their Windows environments are secured according to best practices and identify potential vulnerabilities.
Features The script checks the following system parameters and configurations:
- Windows Firewall Status: Verifies if the firewall is active to block unauthorized access.
- User Account Control (UAC) Status: Confirms that UAC is enabled to prevent unauthorized changes.
- Windows Defender Status: Checks if Windows Defender is active and updated.
- BitLocker Status: Verifies if BitLocker is enabled for data protection.
- Operating System Updates: Ensures that the OS is current with updates.
- Password Policy: Evaluates the robustness of the system's password policy.
- Failed Login Attempts: Checks for multiple failed login attempts.
- Admin Users: Lists all users with administrative privileges.
- Guest Account Status: Confirms the guest account is disabled when not in use.
- Network Shares: Reviews all network shares and their permissions.
- AutoRun Status: Checks if AutoRun is disabled.
- Remote Desktop Status: Verifies the status of Remote Desktop and its configuration.
- Antivirus Software Status: Checks for third-party antivirus software and its status.
- System Restore Point: Checks for the latest system restore point.
- Security Services Status: Confirms critical security services are running.
- Open Ports: Lists open network ports and their services.
- Windows Event Logs: Reviews system and security logs for significant incidents.
- Scheduled Tasks Analysis: Reviews scheduled tasks with high-level privileges.
- Secure Boot Status: Verifies if Secure Boot is enabled.
- Active Network Connections: Reviews all active network connections.
- Startup Applications: List all startup applications.
- Scheduled Tasks: List any scheduled tasks that have run at least once.
Requirements • Windows PowerShell 5.1 or higher • Appropriate administrative privileges to execute system checks
Please reference readme PDFs for detailed usage instructions.