audipol disable
This commit is contained in:
@@ -1,5 +1,5 @@
|
||||
package : comi-hardening
|
||||
version : 1.0-7
|
||||
version : 1.0-8
|
||||
architecture : all
|
||||
section : base
|
||||
priority : optional
|
||||
@@ -29,7 +29,7 @@ editor :
|
||||
keywords :
|
||||
licence :
|
||||
homepage :
|
||||
package_uuid : 6eb2d073-c14b-4089-87a7-03acb5c6040f
|
||||
package_uuid : b0f72a2c-f1de-47f5-93e2-570640fb6805
|
||||
valid_from :
|
||||
valid_until :
|
||||
forced_install_on :
|
||||
@@ -39,6 +39,6 @@ max_os_version :
|
||||
icon_sha256sum : 0c223120ac1a6e4cd0d0abe04cd831c7d4a4c2661947e758c0f703b656933d9a
|
||||
signer : ggendron_pem
|
||||
signer_fingerprint: 244cdf15fa2ea3ead58e4abf232fdf9a30a8a28a798677f71d6a3e76e65f9003
|
||||
signature_date : 2024-03-18T15:15:42.000000
|
||||
signature_date : 2024-03-18T15:18:19.000000
|
||||
signed_attributes : package,version,architecture,section,priority,name,categories,maintainer,description,depends,conflicts,maturity,locale,target_os,min_wapt_version,sources,installed_size,impacted_process,description_fr,description_pl,description_de,description_es,description_pt,description_it,description_nl,description_ru,audit_schedule,editor,keywords,licence,homepage,package_uuid,valid_from,valid_until,forced_install_on,changelog,min_os_version,max_os_version,icon_sha256sum,signer,signer_fingerprint,signature_date,signed_attributes
|
||||
signature : lasCdseEYD5bnMCf5kAmRytczGWQbKgudVVYErFJppdgdVqBBNxfJnRwiQquRb32mH4WDpEr4JAPVShlkQskL80uO2ffrVdSo4G1+kQvk4CDIvjd8+E6BpcswLIPhhSymPGO39lVYixKYLtH/eQPrH5mcxCw5eXFKIONJbGcvyvjQ8gn/3JmD1v2TrTgBzQKjoRyJQwlzmvdw8EPqk13SvcvEpvTxCA+oXMX3t2XYgo1JYjOIzOPG2TjaS41dqBpIkOLxKFGqyDhgdGLi9jfeOkKw/+qH+SAZRVt7TeGt/8DwO40XxMxfzJhQHvMmu3cpqC+stVMrOOk/o7h2wzKHg==
|
||||
signature : VqTtBbKXWrbthHzJnfLItQC6+OecH30cvoPkq1lvsysbSTgGbk59knLfXOXe6RcKF9pFB1kI0agdzP8otK8xAjbTlx118OV3H3Il7fOTW/9NVSci0kKvME1eodHsgHEC4DRNoZOqgLPNS8l9TtrE5RdwRdKIHxpM+NM5j6idbCQAdxNTBG1Qzqqy6bgzLp2eBJyfmNQqmeQVRxWfoq/RrTNC0Q0gsCsaFh+lvZ4GKxCfEPDgN+LQEBC5srBePcRpnCIY9/SJKrUeiffi7HS76yKqhM6JGUWC0ZC2AF2ExJ+dBmzvUbkEh+6KROuBni7lin7KkBJ0HSoIQe0MI+iWGg==
|
||||
@@ -1 +1 @@
|
||||
[[".env","720b2be3b2d977425b68892f478262e7d3f764ca56c86e4d6aa2f639ea3dd214"],[".vscode/launch.json","7185f7797616d2fefe06cdb959ccb08bf0f677287a21aacc3111a65d4f072584"],[".vscode/settings.json","c4ef3e7d26642471ae3a2faaa131a40791fda1542ede085de266c5144adb2a3c"],["README.CSV","22dd78a4853cb10c91896d896adb761a757f190e6dce0462ff3ed43cedb56237"],["WAPT/certificate.crt","68194bca04eef7aaf4dc3c3bd12b017a1263bb5fcc034919fc7edda0c62db266"],["WAPT/control","7c1b8cb5e1fe0aab59adb57eeabeb2b08ea026a1e7f6c1a7a5f61eea62e08fd5"],["WAPT/icon.png","0c223120ac1a6e4cd0d0abe04cd831c7d4a4c2661947e758c0f703b656933d9a"],["WAPT/wapt.psproj","c6246be77fa0d87cb8860fc9de433dfc02b56edaaca368712d5b6267141eeee4"],["setup.py","4c45462ddba2518ef82a8ecd513369742b6877f56a60030ea95061f39481381c"]]
|
||||
[[".env","720b2be3b2d977425b68892f478262e7d3f764ca56c86e4d6aa2f639ea3dd214"],[".vscode/launch.json","7185f7797616d2fefe06cdb959ccb08bf0f677287a21aacc3111a65d4f072584"],[".vscode/settings.json","c4ef3e7d26642471ae3a2faaa131a40791fda1542ede085de266c5144adb2a3c"],["README.CSV","22dd78a4853cb10c91896d896adb761a757f190e6dce0462ff3ed43cedb56237"],["WAPT/certificate.crt","68194bca04eef7aaf4dc3c3bd12b017a1263bb5fcc034919fc7edda0c62db266"],["WAPT/control","7c197754c05a29df603473336443f20e82340b556c898bc898236cacdd44e6d9"],["WAPT/icon.png","0c223120ac1a6e4cd0d0abe04cd831c7d4a4c2661947e758c0f703b656933d9a"],["WAPT/wapt.psproj","c6246be77fa0d87cb8860fc9de433dfc02b56edaaca368712d5b6267141eeee4"],["setup.py","96d596b3352e553447705165e2836928e296b38e912698217ed08c7dca5776e1"]]
|
||||
@@ -1 +1 @@
|
||||
OKv0SBcSlm/+xMmGfN64ii7htR87xTvbFkQkSdKfZoVcHoyFR1eDoJmjcYFQCkK20pZkYXN3mFUkQY4L96XP2K9kQTBImqdenb+aQ6aQRZdHLp0Qs7GX5J3nFEBIPFW3j+bHj4/K7xdLGRR7+atmtU/AWRxufovUOT31VW7irshQYXAPXFnvib+dGD/2GpZ6jggrK5CamgJmFL6bZqb7wESrQN183FSaAi73azOf5wlkh0+daKwLuhta64qbE76dyGIZRTMB4mJBk35mwPjaX2NDBa/VinhcCvtcavSQ5GDwYsqFlrMCrGh6XYL5GpUL+DMobACWHPPQg9ht556wJw==
|
||||
ChDooY9gtoWAYIBqM9qKdiNf4njZcWbDBBhihZAow5VoZ6iF1zOAKigeX2BrRw1EAi8lKrjjJtHDfqu/7CKkYKtbIh1J+CRky2Gkrg6xCWdvfvozXhx5OUAdDxcnSrr2HRS+MDY/W4ApTYvd9/PhpEHTlpTQ+XVta3U13NpphzZQUV7DGM8JT2yrBL84xiRvcDGv/pOEDpf1AOfeX046RBuVj2c/XXav/+rvjhSaHy82q3+D2LlZSWv4Euxyqf2t+iKNFXaWSIR0Y4XalbX8qeVygzB0vxs5dBmDlexjjqF/VfrUHquBLbW4uIc+jhvSSyTKZGqEiqDXDPgDXTk/Gw==
|
||||
106
setup.py
106
setup.py
@@ -265,60 +265,60 @@ def install():
|
||||
# #CIS - Ensure 'Windows Firewall: Public: Settings: Apply local connection security rules' is set to 'No'.
|
||||
# run("netsh advfirewall set public settings localconsecrules enforce=no")
|
||||
#CIS - Ensure 'Audit Credential Validation' is set to 'Success and Failure'.
|
||||
run('auditpol /set /subcategory:"Credential Validation" /success:enable /failure:enable')
|
||||
# Ensure 'Audit Application Group Management' is set to 'Success and Failure'.
|
||||
run('auditpol /set /subcategory:"Application Group Management" /success:enable /failure:enable')
|
||||
# Ensure 'Audit Security Group Management' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Security Group Management" /success:enable')
|
||||
# Ensure 'Audit User Account Management' is set to 'Success and Failure'.
|
||||
run('auditpol /set /subcategory:"User Account Management" /success:enable')
|
||||
# Ensure 'Plug and Play Events' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Plug and Play Events" /success:enable')
|
||||
# Ensure 'Process Creation' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Process Creation" /success:enable')
|
||||
# Ensure 'Account Lockout' is set to 'Success and Failure'.
|
||||
run('auditpol /set /subcategory:"Account Lockout" /failure:enable')
|
||||
# Ensure 'Group Membership' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Group Membership" /success:enable')
|
||||
# Ensure 'Logon' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Logon" /success:enable /failure:enable')
|
||||
# Ensure 'Logoff' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Logoff" /success:enable')
|
||||
# Ensure 'Other Logon/Logoff Events' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Other Logon/Logoff Events" /success:enable /failure:enable')
|
||||
# Ensure 'Special Logon' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Special Logon" /success:enable')
|
||||
# Ensure 'Detailed File Share' is set to 'Success and Failure'.
|
||||
run('auditpol /set /subcategory:"Detailed File Share" /failure:enable')
|
||||
# Ensure 'File Share' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"File Share" /success:enable /failure:enable')
|
||||
# Ensure 'Other Object Access Events' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Other Object Access Events" /success:enable /failure:enable')
|
||||
# Ensure 'Removable Storage' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Removable Storage" /success:enable /failure:enable')
|
||||
# Ensure 'Audit Policy Change' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Audit Policy Change" /success:enable')
|
||||
# Ensure 'Authentication Policy Change' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Authentication Policy Change" /success:enable')
|
||||
# Ensure 'Authorization Policy Change' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Authorization Policy Change" /success:enable')
|
||||
# Ensure 'MPSSVC Rule-Level Policy Change' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"MPSSVC Rule-Level Policy Change" /success:enable /failure:enable')
|
||||
# Ensure 'Other Policy Change Events' is set to 'Success and Failure'.
|
||||
run('auditpol /set /subcategory:"Other Policy Change Events" /failure:enable')
|
||||
# Ensure 'Sensitive Privilege Use' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Sensitive Privilege Use" /success:enable /failure:enable')
|
||||
# Ensure 'IPsec Driver' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"IPsec Driver" /success:enable /failure:enable')
|
||||
# run('auditpol /set /subcategory:"Credential Validation" /success:enable /failure:enable')
|
||||
# # Ensure 'Audit Application Group Management' is set to 'Success and Failure'.
|
||||
# run('auditpol /set /subcategory:"Application Group Management" /success:enable /failure:enable')
|
||||
# # Ensure 'Audit Security Group Management' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Security Group Management" /success:enable')
|
||||
# # Ensure 'Audit User Account Management' is set to 'Success and Failure'.
|
||||
# run('auditpol /set /subcategory:"User Account Management" /success:enable')
|
||||
# # Ensure 'Plug and Play Events' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Plug and Play Events" /success:enable')
|
||||
# # Ensure 'Process Creation' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Process Creation" /success:enable')
|
||||
# # Ensure 'Account Lockout' is set to 'Success and Failure'.
|
||||
# run('auditpol /set /subcategory:"Account Lockout" /failure:enable')
|
||||
# # Ensure 'Group Membership' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Group Membership" /success:enable')
|
||||
# # Ensure 'Logon' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Logon" /success:enable /failure:enable')
|
||||
# # Ensure 'Logoff' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Logoff" /success:enable')
|
||||
# # Ensure 'Other Logon/Logoff Events' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Other Logon/Logoff Events" /success:enable /failure:enable')
|
||||
# # Ensure 'Special Logon' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Special Logon" /success:enable')
|
||||
# # Ensure 'Detailed File Share' is set to 'Success and Failure'.
|
||||
# run('auditpol /set /subcategory:"Detailed File Share" /failure:enable')
|
||||
# # Ensure 'File Share' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"File Share" /success:enable /failure:enable')
|
||||
# # Ensure 'Other Object Access Events' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Other Object Access Events" /success:enable /failure:enable')
|
||||
# # Ensure 'Removable Storage' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Removable Storage" /success:enable /failure:enable')
|
||||
# # Ensure 'Audit Policy Change' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Audit Policy Change" /success:enable')
|
||||
# # Ensure 'Authentication Policy Change' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Authentication Policy Change" /success:enable')
|
||||
# # Ensure 'Authorization Policy Change' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Authorization Policy Change" /success:enable')
|
||||
# # Ensure 'MPSSVC Rule-Level Policy Change' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"MPSSVC Rule-Level Policy Change" /success:enable /failure:enable')
|
||||
# # Ensure 'Other Policy Change Events' is set to 'Success and Failure'.
|
||||
# run('auditpol /set /subcategory:"Other Policy Change Events" /failure:enable')
|
||||
# # Ensure 'Sensitive Privilege Use' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Sensitive Privilege Use" /success:enable /failure:enable')
|
||||
# # Ensure 'IPsec Driver' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"IPsec Driver" /success:enable /failure:enable')
|
||||
|
||||
# Ensure 'Other System Events' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Other System Events" /success:enable /failure:enable')
|
||||
# Ensure 'Security State Change' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Security State Change" /success:enable')
|
||||
# Ensure 'Security System Extension' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"Security System Extension" /success:enable')
|
||||
# Ensure 'System Integrity' is set to include 'Success'.
|
||||
run('auditpol /set /subcategory:"System Integrity" /success:enable /failure:enable')
|
||||
# # Ensure 'Other System Events' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Other System Events" /success:enable /failure:enable')
|
||||
# # Ensure 'Security State Change' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Security State Change" /success:enable')
|
||||
# # Ensure 'Security System Extension' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"Security System Extension" /success:enable')
|
||||
# # Ensure 'System Integrity' is set to include 'Success'.
|
||||
# run('auditpol /set /subcategory:"System Integrity" /success:enable /failure:enable')
|
||||
|
||||
#CIS - Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'.
|
||||
registry_set(HKEY_LOCAL_MACHINE, r"SOFTWARE\Policies\Microsoft\Windows\Personalization", "NoLockScreenCamera","1")
|
||||
|
||||
Reference in New Issue
Block a user