This is a script to harden your Windows server or workstation.
- Download as zip. It'll be named
win-main. - Edit the
users.txtandadmins.txtfiles. If there's some Windows system critical services, possibly edit theenabled_services.txtordisabled_services.txtfiles. The script will ask you if you want to enable and configure RDP, FTP, and SMB. - Run the following in a Powershell terminal with administrative privileges:
Set-ExecutionPolicy Unrestricted -Confirm -Force
.\scripts\main.ps1The script will try to import a GPO last. You can start doing your own thing by then, even before the GPO finishes importing. The output will be logged to script_log.txt in the logs folder.
If you want to look for media files, run media.bat, which will log to a folder on your user's desktop.
{9AA00A8B-E75B-452C-B263-D4FA774C511E}is Kile and Nick's Win10UltGPO{EE1CF134-A163-4488-8832-D7CEAC60FB43}is Olric's old one{79677B19-3111-423D-AB81-B72CBD52008D}is the new one made by Olric and Shirley