Windows security testing and hardening techniques.

• Security settings
• Audit policies
• Software restriction
• AppLocker

• Real-time protection
• Cloud protection
• Exclusion management
• ASR rules

• Credential Guard
• LSASS protection
• Remote Guard
• Virtualization security

• Unnecessary services
• Legacy protocols
• Debug features
• Remote access

• UAC settings
• PowerShell policies
• Script blocking
• Macro settings

• Service misconfigurations
• Unquoted paths
• DLL hijacking
• Token manipulation

• SAM dumping
• LSA secrets
• Cached credentials
• Kerberos attacks

• Registry keys
• Scheduled tasks
• Services
• WMI subscriptions

• Event logs
• Sysmon
• ETW tracing
• WEF collection

• Sysinternals
• PowerShell
• Windows Admin Center

For authorized security work.