This episode is brought to you by ITProTV. Visit https://www.itpro.tv/7minsec for over 65 hours of IT training for free!
In this episode I explore some ways you can turn up the security heat on your Windows workstations by mapping their security to a hardening standard and/or baseline. Specifically, I cover:
- NIST STIG for Windows 10
- Heimdal Security - Windows 10 Hardening Guide
- Center for Internet Security's security benchmarks
- Windows Security Compliance Toolkit (SCT)
I think one path to success is to use the Windows SCT as a way to create a baseline, and then use it - plus some of the other guides and standards - to gradually turn the security screws on the OS. Don't just import a GPO template and turn on 123,456,789 settings at once. You'll likely bring the network to its knees!
Got a better/faster/stronger way to accomplish baselining? Let me know!