Hello all, long time no post.... I have been super busy at work and the birth of our first child as kept me busy at home. Anyway I find myself in need of a quick way to document the local security policies and certain other information on several systems (Win XP & Win2k3). They are not part of a domain, more of a workgroup setting. I know... talk to the engineers not me. Any I am trying to document as much information as I can about each system for a security review process. I have a collection of tools like PSINFO, PSLIST and FPORT to help me along. However if anyone knows a way to pull the info via WMI I would rather script it so I could customize the output. Basically I need to document all open ports, active protocols, currently running processes, and the information listed in the Local Computer Policy MMC snapin "Local Computer Policy\Computer Configuration\security\Windows Settings\Security Settings". If anyone knows hot to enumerate these (security policies) I would appreciate the help in building a script to list them out into a file I can use in final report. Also if there is an easier way or this has already been done please let me know, no since reinventing the wheel. The only thing is that it must be freeware or open source code. I know my company would buy a tool like Hyena, that would make too much sense.
Also if anyone knows anything else I missed that would be good to document for a security report on a system please let me know. I don't want to go overboard like complete file hashes or anything. But information that upon review would show that the proper steps have been taken to secure a box or that they have not been taken. I.e. unnecessary ports have been closed, unnecessary services stopped... You get the idea. Thanks
Cybex
_________________________
Common sense isn't so common.
