Added PowerShell Module Logging and Created an install script

0x6d69636b / windows_hardening

HardeningKitty and Windows Hardening Settings

MIT License

2.33k stars 306 forks source link

Added PowerShell Module Logging and Created an install script #135

Closed 4D5A closed 1 year ago

4D5A commented 1 year ago

This version adds PowerShell Module Logging and PowerShell Transcription (Invocation Header) in finding_list_0x6d69636b_machine.csv, renumbers the IDs for the 21xx range to accommodate the new finding IDs, and includes a script to download and install the latest release.

4D5A commented 1 year ago

There is a problem with my addition of HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ModuleLogging,EnableModuleLogging,,,,0,1. If Invoke-HardeningKitty -Mode HailMary is run with a file finding list that includes that entry, powershell will crash when it is opened. The problem can be fixed by setting HKLM\Software\Policies\Microsoft\Windows\PowerShell\ModuleLogging\EnableModuleLogging to 0.