9个管理员必备的安全相关powershell脚本 2


1.清理管理员组
Remove multiple users from the local administrator group on multiple computers
2.加固SAM文件访问
SAMRi10 – Hardening SAM Remote Access in Windows 10/Server 2016
3.防止net sessions枚举攻击
Net Cease – Hardening Net Session Enumeration
4.以独立进程运行脚本
Run Script As A Process (StartScriptAsProcess.ps1)
5.文件系统安全模块
File System Security PowerShell Module 4.2.3
6.病毒汇总报告
Get-VirusTotalReport – Querying VirusTotal service using PowerShell
7.SHA-1证书签名检查
SHA1 Certificate Signature Check (Updated)
8.检测本地管理员账户
Get remote machine members of Local Administrator group
9.kerberos golden ticket检查
Kerberos Golden Ticket Check (Updated)

参考链接:
9 ESSENTIAL POWERSHELL SECURITY SCRIPTS EVERY ADMIN MUST KNOW


发表评论

电子邮件地址不会被公开。 必填项已用*标注

2 条评论 “9个管理员必备的安全相关powershell脚本