Audit
Learn the status of WMI offline cache. Check to see if it is enabled or disabled and where the cache is located. Uses Powershell command ‘gwmi win32_offlinefilescache’ to determine offline cache status. Results are displayed in the procedure log. Can report using tags: $WinOfflineCache$ $OCSEnabled$ $OCSDisabled$. See the following article for more information on this…
Read MoreAudits the machine to see if TPM is enabled, and updates custom field (Bitlocker Volume Status) when disabled (Does NOT update anything when working). You can report using tag $BitLocker$
Read MoreUses registry to check for office version and if it’s a 32 or 64 bit installation. Reports to procedure log. Can use tags $O365$ and $Audit$ for reporting.
Read MoreDownloads NMAP and has it scan External Gateway for commonly exploited open ports. Requires Visual C++ Redistributable 2013 (x86) to be installed. Reports to the procedure log and uses the tag: $openports$ Thanks to NMAP.ORG for their port scan tool.
Read MoreScript checks if CVE-2019-1367 is installed. If not, will attempt to install. If install is successful, it will prompt the user telling them that a reboot is recommended. Can report using $KBaudit$ and $OOD$.
Read MoreScript downloads exe file to determine what version of dot NET are installed. Able to report by filtering Agent Procedure Logs for $dotNET$ shows all entries regarding dotNET. $Audit$ shows all entries regarding all audit scripts. $dotNEThighest$ only shows the single newest version on the system. Highest version is also saved to Custom Field.. can…
Read MoreServicing Stack Updates are updates made to the tools Windows uses to update your machine. Historically, these updates are not very common though we have seen four updates in a row between December 2018 and May 2019. This script is updates when new SSU updates are released. It is very important that you install the latest…
Read MoreServicing Stack Updates are updates made to the tools Windows uses to update your machine. Historically, these updates are not very common though we have seen four updates in a row between December 2018 and May 2019. This script is updates when new SSU updates are released. It is very important that you install the latest…
Read MoreSometimes you want to assess new machines to make sure they have all the patches they should have installed. This script will ping WSUS and export a CSV file (which can be opened in excel) of all the installed Windows updates on the machine. This script is fairly accurate, however, it cannot report on windows…
Read MoreScript makes a powershell query to get SMBv1 status. Writes result to procedure log. Can report using $smbv1$
Read More