CSEC_PUBLIC/WELA
1
0
Fork 0
mirror of https://github.com/Yamato-Security/WELA.git synced 2026-03-24 05:22:35 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #157 from Yamato-Security/156-fix-default-value

Browse Source 
fix: update default auditing values in WELA.ps1
This commit is contained in:
Zach Mathis (田中ザック)
2025-11-20 12:06:02 +09:00
committed by GitHub
parent a0d1601004 7a8ce70e16
commit 86b3aa56b0
1 changed files with 13 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
WELA.ps1
View File

@@ -596,7 +596,7 @@ function GuideYamatoSecurity
"Security Group Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success and Failure",
"Low",
""
@@ -614,7 +614,7 @@ function GuideYamatoSecurity
"User Account Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success and Failure",
"Low",
""
@@ -1384,7 +1384,7 @@ function GuideYamatoSecurity
"",
$current,
[array]$rules,
"Enabled",
"Disabled",
"Enabled",
"",
""
@@ -1833,7 +1833,7 @@ function GuideASD {
"Security Group Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success and Failure",
"",
""
@@ -1851,7 +1851,7 @@ function GuideASD {
"User Account Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success and Failure",
"",
""
@@ -2621,7 +2621,7 @@ function GuideASD {
"",
$current,
[array]$rules,
"Enabled",
"Disabled",
"",
"",
""
@@ -3070,7 +3070,7 @@ function GuideMSC {
"Security Group Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success",
"",
""
@@ -3088,7 +3088,7 @@ function GuideMSC {
"User Account Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success",
"",
""
@@ -3858,7 +3858,7 @@ function GuideMSC {
"",
$current,
[array]$rules,
"Enabled",
"Disabled",
"",
"",
""
@@ -4307,7 +4307,7 @@ function GuideMSS {
"Security Group Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success and Failure",
"",
""
@@ -4325,7 +4325,7 @@ function GuideMSS {
"User Account Management",
$auditpol[$guid],
[array]$rules,
"No Auditing",
"Success",
"Success and Failure",
"",
""
@@ -5095,7 +5095,7 @@ function GuideMSS {
"",
$current,
[array]$rules,
"Enabled",
"Disabled",
"",
"",
""
@@ -5412,7 +5412,7 @@ function AuditFileSize {
"Microsoft-Windows-Crypto-DPAPI/Debug" = @("1 MB", "128 MB+")
"Microsoft-Windows-DriverFrameworks-UserMode/Operational" = @("1 MB", "128 MB+")
"Microsoft-Windows-NTLM/Operational" = @("1 MB", "128 MB+")
"Microsoft-Windows-PowerShell/Operational" = @("20 MB", "256 MB+")
"Microsoft-Windows-PowerShell/Operational" = @("15 MB", "256 MB+")
"Microsoft-Windows-PrintService/Admin" = @("1 MB", "128 MB+")
"Microsoft-Windows-PrintService/Operational" = @("1 MB", "128 MB+")
"Microsoft-Windows-Security-Mitigations/KernelMode" = @("1 MB", "128 MB+")