AttackSurfaceAnalyzer
TheDSCBook
AttackSurfaceAnalyzer | TheDSCBook | |
---|---|---|
18 | 10 | |
2,660 | 92 | |
0.7% | - | |
0.0 | 10.0 | |
about 1 month ago | about 4 years ago | |
C# | ||
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
AttackSurfaceAnalyzer
- New 3rd Party Software Audit
- Attack Surface Analyzer helps you analyze your OS's security configuration
- No Mass Deployment Method
- Is there a package or method of tracking what changes installers make to a system?
-
How do you vet software?
Solid comments here, on the client side you might like MS Attack Surface Monitor. https://github.com/microsoft/AttackSurfaceAnalyzer
- How do I see what settings/configurations were recently changed after running a .exe.?
-
Comparing current to default registry settings?
Also take a look at MS attack surface anaylzer it has similar and additional capabilities. https://github.com/microsoft/attacksurfaceanalyzer
-
Running application as admin from standard user without savecred?
Maybe try Attack Surface Analyzer as well.
-
Want to tighten up security in the company, need some assistance.
Basically, anything is better than giving local admin, even if you have to give Domain Users full control to the app folder(s) and reg keys. The tricky part is finding the required perms but home grown apps are usually pretty simple. An app like Attack Surface Analyzer may be able to help. Or just run the app as a standard user and use a tool like ProcMon to find the denied locations. I would probably first loosen up the ACL on the Program Files folder and that alone often fixes it.
- GitHub - microsoft/AttackSurfaceAnalyzer: Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
TheDSCBook
-
Security management of end devices without AD
For Mac, I recommend people be familiar with how Google manages Macs even if they decide to go a different direction, like Mosyle or Jamf. For Windows, be familiar with [DSC]() and know that the first-party Intune service is basically a DSC-Pull service.
-
Setting DNS on Windows servers
Whether these instances should be under a CM system like DSC or Ansible, where parameters can be set centrally.
-
Windows Server Admin Center
Our Linux and Mac users have long used RDP to log into Windows. That's largely obsolete, so the plan is for the remaining Windows to be Infrastructure-as-Code via DSC.
-
null route a tld (.zip) for mobile domain-joined computers?
Intune is basically a DSC Pull service, and you can roll your own if you're so inclined.
-
Cloud auth and/or management for remote linux laptops
Intune is a SaaS MDM that leverages DSC, which you can do yourself, if you want. In fact, DSC even supports Linux, to some degree. Nobody uses that, but it's there if someone wants to unify their client management with it.
-
what is your best method do deploying a software to clients?
Intune is a subscription service that uses the Desired State Configuration component built into Windows 10+, and DSC-Pull Service.
-
IT on a budget (school)
On Windows hosts, we use a DSC Pull-based Configuration Management system, which is the same thing that Microsoft's "Intune" subscription CM runs on. You could think of it as the open-source version of Intune -- more understanding to implement, but without the vendor baggage. I believe that DSC is present on "Home" versions of Windows, whereas "Home" versions cannot join an MSAD domain and are otherwise purposely feature-limited.
- Is there a package or method of tracking what changes installers make to a system?
-
Anybody using Desired State Configuration (DSC)
You can invoke DSC directly, if you'd like. Microsoft is quietly burying it now because they've been successful in pushing their userbase into subscription cloud services, but you can implement a DSC Pull Server and implement your own in-house version of Intune. An extremely good resource is The DSC Book, now free on Github.
-
Is there an equivalent to Windows 11 SE for non education enterprises?
DSC LCM and Intune claim to support Linux, for what it's worth. The document that says Intune supports Linux, Android, etc., conspicuously doesn't say that Intune supports 11 SE, interestingly. One wonders if the DSC client, the LCM, is present in 11 SE.
What are some alternatives?
redis-docker - Docker Official Image packaging for Redis
SuperScripteroni - 💽 A method to deploy software live with group policy.
masscan - TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
docker-ce - :warning: This repository is deprecated and will be archived (Docker CE itself is NOT deprecated) see the https://github.com/docker/docker-ce/blob/master/README.md :warning:
Redis - Redis is an in-memory database that persists on disk. The data model is key-value, but many different kind of values are supported: Strings, Lists, Sets, Sorted Sets, Hashes, Streams, HyperLogLogs, Bitmaps.
NewsBlur - NewsBlur is a personal news reader that brings people together to talk about the world. A new sound of an old instrument.