Audit

Offline Cache Status

Learn the status of WMI offline cache. Check to see if it is enabled or disabled and where the cache is located. Uses Powershell command ‘gwmi win32_offlinefilescache’ to determine offline cache status. Results are displayed in the procedure log. Can report using tags: $WinOfflineCache$ $OCSEnabled$ $OCSDisabled$. See the following article for more information on this…

Read More

Bitlocker – TPM Audit only

Audits the machine to see if TPM is enabled, and updates custom field (Bitlocker Volume Status) when disabled (Does NOT update anything when working). You can report using tag $BitLocker$

Read More

Audit – Microsoft Office Version

Uses registry to check for office version and if it’s a 32 or 64 bit installation. Reports to procedure log. Can use tags $O365$ and $Audit$ for reporting.

Read More

Gateway Port Scan Report

Downloads NMAP and has it scan External Gateway for commonly exploited open ports. Requires Visual C++ Redistributable 2013 (x86) to be installed. Reports to the procedure log and uses the tag: $openports$ Thanks to NMAP.ORG for their port scan tool.

Read More

Scripting Engine Memory Corruption Vulnerability Patch Update

Script checks if CVE-2019-1367 is installed. If not, will attempt to install. If install is successful, it will prompt the user telling them that a reboot is recommended. Can report using $KBaudit$ and $OOD$.

Read More

dotNET Audit (and update Custom Field)

Script downloads exe file to determine what version of dot NET are installed. Able to report by filtering Agent Procedure Logs for $dotNET$ shows all entries regarding dotNET. $Audit$ shows all entries regarding all audit scripts. $dotNEThighest$ only shows the single newest version on the system. Highest version is also saved to Custom Field.. can…

Read More

MS Stack Audit AIO

Servicing Stack Updates are updates made to the tools Windows uses to update your machine. Historically, these updates are not very common though we have seen four updates in a row between December 2018 and May 2019. This script is updates when new SSU updates are released. It is very important that you install the latest…

Read More

MS Stack Audit

Servicing Stack Updates are updates made to the tools Windows uses to update your machine. Historically, these updates are not very common though we have seen four updates in a row between December 2018 and May 2019. This script is updates when new SSU updates are released. It is very important that you install the latest…

Read More

List All Windows Updates as CSV(WSUS)

Sometimes you want to assess new machines to make sure they have all the patches they should have installed. This script will ping WSUS and export a CSV file (which can be opened in excel) of all the installed Windows updates on the machine. This script is fairly accurate, however, it cannot report on windows…

Read More

SMBv1 Status (Win 8.1 and 10)

Script makes a powershell query to get SMBv1 status. Writes result to procedure log. Can report using $smbv1$

Read More