I have several security policy files (INF exported from different Windows machines) which I need to audit. Is there any automatic tool you know of, that can analyse those files according to best practice that I'll provide?
Asked
Active
Viewed 434 times
0
-
I would do this with C# as a Desktop app, just make a list of threats and loop thru the files, and the practice can be made within template ini file. – Andrew Smith Jul 29 '12 at 17:04
1 Answers
1
Microsoft Security Baseline Analyzer and Security Compliance Manager are Microsoft's tools for this.
SCM is likely the one you are looking for...
schroeder
- 125,553
- 55
- 289
- 326
-
MSBA I know, and it can't check exported policy files. SCM I know a bit less, and I couldn't find automatic way for analysing INF files in t as well. Google didn't help. Currently importing the settings to VM and then running MSBA, but surly there is better solution than that... – Boaz Tirosh Jul 31 '12 at 21:17