Windows settings *more strict* than recommended result in "Failed" test result

0x6d69636b / windows_hardening

HardeningKitty and Windows Hardening Settings

MIT License

2.36k stars 315 forks source link

Windows settings more strict than recommended result in "Failed" test result #146

Closed shaunm001 closed 1 year ago

shaunm001 commented 1 year ago

Example 1: Rule ID 1204 recommends blocking Guests group, but test result is "Failed" if we block Guests group in addition to other groups such as Domain Admins.

Example 2: Rule ID 1323 recommends "Prompt for credentials on the secure desktop", but test result is "Failed" when we use the more restrictive setting "Automatically deny elevation requests".

0x6d69636b commented 1 year ago

I updated the operator for rule IDs 1204-1206 to contains and for rule ID 1323 to lesser or equal

0x6d69636b commented 1 year ago

This led to issue #151 but should be fixed now

0x6d69636b / windows_hardening

Windows settings *more strict* than recommended result in "Failed" test result #146

Windows settings more strict than recommended result in "Failed" test result #146