Search - ScriptShare

Search Results

This script fixes the CIS benchmark check for 'Include command line in process creation events' by setting the required registry key and verifies the result.

This script fixes the windows CIS Benchmark check 18.9.3.1: "Ensure 'Include command line in process creation events' is set to 'Enabled'."

The script ensures that the registry key 'ProcessCreationIncludeCmdLine_Enabled' is set to 1 under the path 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit'. It first checks for necessary prerequisites, sets the registry value, and then verifies that the setting is correct.

Parameters

None This script does not require any parameters. It performs the fix and verification automatically.

Notes

This script must be run with administrative privileges.
It is compatible with Windows 8.1 and later.
Use with caution as it modifies the system registry.

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.4.1

Fix Ensure 'Encryption Oracle Remediation' is set to 'Enabled: Force Updated Clients'.

This script fixes the windows CIS Benchmark check 18.9.4.1: "Ensure 'Encryption Oracle Remediation' is set to 'Enabled: Force Updated Clients'."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.4.2

Fix Ensure 'Remote host allows delegation of non- exportable credentials' is set to 'Enabled'.

This script fixes the windows CIS Benchmark check 18.9.4.2: "Ensure 'Remote host allows delegation of non- exportable credentials' is set to 'Enabled'."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.5.1

Fix Ensure 'Turn On Virtualization Based Security' is set to 'Enabled'.

This script fixes the windows CIS Benchmark check 18.9.5.1: "Ensure 'Turn On Virtualization Based Security' is set to 'Enabled'."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.5.2

Fix Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher.

This script fixes the windows CIS Benchmark check 18.9.5.2: "Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.5.3

Fix Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'.

This script fixes the windows CIS Benchmark check 18.9.5.3: "Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.5.4

Fix Ensure 'Turn On Virtualization Based Security: Require UEFI Memory Attributes Table' is set to 'True (checked)'.

This script fixes the windows CIS Benchmark check 18.9.5.4: "Ensure 'Turn On Virtualization Based Security: Require UEFI Memory Attributes Table' is set to 'True (checked)'."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.5.5

Fix Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Enabled with UEFI lock'.

This script fixes the windows CIS Benchmark check 18.9.5.5: "Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Enabled with UEFI lock'."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.5.7

Fix Ensure 'Turn On Virtualization Based Security: Kernel-mode Hardware-enforced Stack Protection' is set to 'Enabled: Enabled in enforcement mode'.

This script fixes the windows CIS Benchmark check 18.9.5.7: "Ensure 'Turn On Virtualization Based Security: Kernel-mode Hardware-enforced Stack Protection' is set to 'Enabled: Enabled in enforcement mode'."

XXeroSec

7mo ago

v1PowerShell Windows

cis_win11_enterprise 18.9.7.1.1

Fix Ensure 'Prevent installation of devices that match any of these device IDs' is set to 'Enabled'.

This script fixes the windows CIS Benchmark check 18.9.7.1.1: "Ensure 'Prevent installation of devices that match any of these device IDs' is set to 'Enabled'."

XXeroSec

7mo ago

Search Results

ago