Security

SonicWALL SSL NetExtender Install

Downloads NetExtender from Sonicwall – https://www.sonicwall.com/products/remote-access/vpn-clients/ Check the version to ensure it is still current and update the link in line 2 if needed.

Read More

Re-Enable HTTP/2 (Undo CVE-2023-44487 mitigation)

Removes the registry keys to mitigate CVE-2023-44487 HTTP/2 Rapid Reset Attack. See: CVE-2023-44487

Read More

Disable HTTP/2 (CVE-2023-44487 mitigation)

Set registry keys to mitigate CVE-2023-44487 HTTP/2 Rapid Reset Attack. See: CVE-2023-44487

Read More

NBNS Spoofing Protection (Enable)

Set registry key to prevent spoofing of the Netbios Name Service.

Read More

NBNS Spoofing Protection (Disable)

Removes registry key to prevent spoofing of the Netbios Name Service.

Read More

LLMNR Spoofing Protection (Disable)

Removes registry key to prevent spoofing of Link-Local Multicast Name Resolution.

Read More

LLMNR Spoofing Protection (Enable)

Sets registry key to prevent spoofing of Link-Local Multicast Name Resolution.

Read More

Storm-0978 Mitigation Disable

Script Desc: Deletes the registry key in CVE-2023-36884: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36884 This script disables the registry key described in this link here. Use this script to undo the changes made to protect against the Storm-0978 exploit.

Read More

Storm-0978 Mitigation Enable

Enable the mitigation in the registry per CVE-2023-36884 instructions: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36884 This script is designed to protect your system against the Storm-0978 exploit. If you’re using Microsoft Defender for Office, you’re already safe from harmful attachments that could use this exploit. The script also employs a feature that stops all Office applications from starting up processes…

Read More

CVE-2023-32019 Enable

Use this script to automate the process of mitigating CVE-2023-32019 across your environment. The CVE is disabled by default. This script enables it. Click here to see the summary of why it is disabled by default and what it does: How To Manage The Vulnerability Associated With CVE-2023-32019. This script enables the CVE-2023-32019 on Windows…

Read More