PowerShell Security Hardening Check
Evaluate your PowerShell configuration and controls in under 5 minutes.
Answer a few questions
Get your score
Consider your next steps
Are the latest PowerShell Core and/or Windows PowerShell versions used?
Yes
Partial
No
Are restrictive execution policies consistently enforced?
Yes
Partial
No
Is Constrained Language Mode enforced on all workstations?
Yes
Partial
No
Is Script Block Logging and Transcription centrally enabled?
Yes
Partial
No
Are all production scripts digitally signed?
Yes
Partial
No
Are permanent admin rights for PowerShell prohibited?
Yes
Partial
No
Is JIT access used for administrative PowerShell tasks?
Yes
Partial
No
Are ASR rules targeting PowerShell enabled?
Yes
Partial
No
Are all PowerShell logs forwarded to a centralized SIEM?
Yes
Partial
No
Does the SIEM or EDR solution actively alert on suspicious PowerShell events?
Yes
Partial
No
MATURITY SCORE
0