HardeningKitty

HardeningKitty - Checks and hardens your Windows configuration (by scipag)
Add to my DEV experience Windows windows-10 windows-server Hardening Audit Checklist Powershell defense Blueteam Security Registry
Source Code
HardeningKitty Reviews
Suggest alternative
Edit details
The modern identity platform for B2B SaaS
The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
workos.com
Sponsored

HardeningKitty Alternatives

Similar projects and alternatives to HardeningKitty

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better HardeningKitty alternative or higher similarity.
Suggest an alternative to HardeningKitty

HardeningKitty reviews and mentions

Posts with mentions or reviews of HardeningKitty. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-06-29.
  • If You Had To Create All IT Policies From Scratch
    2 projects | /r/sysadmin | 29 Jun 2023
    Also Hardening-Kitty. https://github.com/scipag/HardeningKitty
  • CIS benchmark Windows Server 2022
    1 project | /r/sysadmin | 30 Apr 2023
  • Windows OS Security
    4 projects | news.ycombinator.com | 11 Jan 2023
  • Creating a jump host in 2023
    6 projects | /r/sysadmin | 2 Jan 2023
    Critically, harden the OS. Like, more than you think you need to. Way more. Consider the jump host capability as a core component of each system/environment/platform/application it's used to access/manage and assess value and risk with all those business processes/functions in mind even though you're using one jump host for each of those use cases because, inevitably, the same template/container/configuration/script will be reused so any misconfigurations will replicate. If you need a Windows OS, consider hardening kitty as it offers a locally executable option for both hardening and auditing. If you need to met regulatory requirements (HIPAA, CMMC, FISMA, PCI, etc.), consider OpenSCAP or whatever paid solution you use for agent-based vuln scans (avoid less intensive solutions that only run unauthenticated scans or network-based audits, they tend to avoid non-CVE vulns that exist in the configuration). If you need to rely on open source endpoint security solutions like Wazuh make sure they integrate nicely with SIEM, SOAR, and remote management. Wherever possible, use DevOps-friendly solutions for configuration management (think Ansible and Terraform vice Github Actions :) ) and remember that, if you're responding to an incident, you're going to want to suspend all of your jump boxes, retain any storage and their full memory state, and spin up verifiably clean jump boxes so you have confidence in your connections into the environment. This is the most commonly overlooked need (most orgs seem to be aware of their privilege sprawl issue) and it has a MASSIVE impact on your ability to quickly begin effective investigation and response efforts in the event of an incident (most orgs do NOT seem to be aware of this and it costs them time and meaningful information during incidents).
  • Active Directory Security Tools
    6 projects | /r/activedirectory | 9 Dec 2022
  • Help!! Is there a Scanning tool that helps scan the whole Windows Build Image?
    1 project | /r/cybersecurity | 25 Nov 2022
  • Is Windows Defender for Business any good?
    2 projects | /r/cybersecurity | 9 Nov 2022
    Agree. Harden your endpoints (if unsure where to start consider hardening kitty, https://github.com/scipag/HardeningKitty) and harden Defender (https://0ut3r.space/2022/03/06/windows-defender/). Add Sysmon with a good config (https://github.com/olafhartong/sysmon-modular) and you've reached a good starting point.
  • Ciphers... Edge... I wanna AES256 SHA384 only
    3 projects | /r/MicrosoftEdge | 26 Sep 2022
    I use a tool called Hardening-Kitty https://github.com/scipag/HardeningKitty , which has recommended policy lists from a variety of organizations. I check my computer with all of them. They don't all agree, of course, so I kind of pick and choose a little. But the lists have helped me find things I had no idea where they were.
  • PowerShell script to confirm server configuration
    2 projects | /r/PowerShell | 15 Sep 2022
  • There’s a GitHub repo for testing every single Windows security / privilege mechanism. I’ve lost the book mark, anyone know it?
    2 projects | /r/cybersecurity | 14 Sep 2022
    A related tool that I found somewhere on reddit recently: HardeningKitty
  • A note from our sponsor - WorkOS
    workos.com | 25 Apr 2024
    The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Stats

Basic HardeningKitty repo stats
14
1,133
2.9
about 2 months ago

scipag/HardeningKitty is an open source project licensed under MIT License which is an OSI approved license.

The primary programming language of HardeningKitty is PowerShell.

Popular Comparisons

  1. HardeningKitty VS windows_hardening
  2. HardeningKitty VS AutomaticMaintenance
  3. HardeningKitty VS SchannelConfiguration
  4. HardeningKitty VS hardentools
  5. HardeningKitty VS PowerZure
  6. HardeningKitty VS Audit-Test-Automation
  7. HardeningKitty VS UltimateAppLockerByPassList
  8. HardeningKitty VS DomainProtect
  9. HardeningKitty VS PSSystemAdministrator
  10. HardeningKitty VS NorthPoint-Installer

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com