CSEC_PUBLIC/WELA
1
0
Fork 0
mirror of https://github.com/Yamato-Security/WELA.git synced 2026-01-23 16:33:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: enhance auditing setup with new auditpol configurations and batch script for event log management

Browse Source
This commit is contained in:
fukusuket
2025-11-15 10:27:34 +09:00
parent 7559cfea84
commit 4d93de3bb5
1 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
WELA.ps1
View File

@@ -5929,11 +5929,9 @@ function ConfigureAuditSettings {
if ($proceed) {
try {
# AuditFilter の設定
Start-Process -FilePath "certutil.exe" -ArgumentList "-setreg","CA\AuditFilter","127" -NoNewWindow -Wait
Start-Process -FilePath "certutil.exe" -ArgumentList "-setreg","CA\AuditFilter","127" -NoNewWindow -Wait -RedirectStandardOutput 'NUL' -RedirectStandardError 'NUL'
# 証明書サービスの再起動
Restart-Service -Name "CertSvc" -Force -ErrorAction Stop
# 反映確認
$propAfter = Get-ItemProperty -Path $regPath -Name "AuditFilter" -ErrorAction SilentlyContinue
$newValue = if ($null -ne $propAfter) { [int]$propAfter.AuditFilter } else { $null }