6 comments

Skip to comment form

    • Bobby on October 21, 2016 at 10:35 am

    Excellent write-up! Thanks for publishing this.

    • Ned Pyle on October 21, 2016 at 1:54 pm

    You can also remove SMB1 from Windows 8.1. And I sure wish you would. 🙂

    Excellent article, as always, Sean.

    • F on October 24, 2016 at 2:17 pm

    Very nice comprehensive list – thanks!

  1. Great write-up nice good list of findings that are over and above what STIG/CIS currently dictates.

  2. One of the best blogposts I have seen in a long time. Great work.
    Also I suggest to remove the possibility to run .hta extensions. It is no problem wrapping vb scripts inside a HTA.

  3. Great Article.

    Thought it worth noting EMET isn’t hugely recommended anymore for Windows 10,

    https://blogs.technet.microsoft.com/srd/2016/11/03/beyond-emet/

Comments have been disabled.