Windows 10 IG1 Guide
latest
  • Introduction
  • CIS Control 1: Inventory and Control of Hardware Assets
  • CIS Control 2: Inventory and Control of Software Assets
  • CIS Control 3: Continuous Vulnerability Management
  • CIS Control 4: Controlled Use of Administrative Privileges
  • CIS Control 5: Secure Configurations for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers
  • CIS Control 6: Maintenance, Monitoring and Analysis of Audit Logs
  • CIS Control 7: Email and Web Browser Protections
  • CIS Control 8: Malware Defenses
  • CIS Control 9: Limitation and Control of Network Ports, Protocols, and Services
  • CIS Control 10: Data Recovery Capabilities
  • CIS Control 11: Secure Configuration for Network Devices, such as Firewalls, Routers and Switches
  • CIS Control 12: Boundary Defense
  • CIS Control 13: Data Protection
  • CIS Control 14: Controlled Access Based on the Need to Know
  • CIS Control 15: Wireless Access Control
  • CIS Control 16: Account Monitoring and Control
  • CIS Control 17: Implement a Security Awareness and Training Program
  • CIS Control 19: Incident Response and Management
  • Appendix
  • Acronyms & Abbreviations
  • Links and Resources
Windows 10 IG1 Guide
  • Docs »
  • Links and Resources
  • Edit on GitHub

Links and Resources¶

  • CIS Controls: https://www.cisecurity.org/controls/
  • SANS Institute: https://www.sans.org/findtraining/
  • Microsoft Windows 10 Versions: https://www.microsoft.com/en-us/windows/compare
  • Daniel Miessler Blog: https://danielmiessler.com/blog/continuous-asset-management-security
  • Nmap: https://nmap.org
  • Spiceworks: https://www.spiceworks.com
  • Zenmap: https://nmap.org/zenmap
  • Netwrix: https://www.netwrix.com
  • Open Audit: http://www.open-audit.org
  • 10apps Manager: https://www.thewindowsclub.com/10appsmanager-windows-10
  • Itarian: https://us.itarian.com/patch-management/free-windows-patch-management-software.php
  • Opsi: https://www.opsi.org
  • CIS Benchmarks: https://www.cisecurity.org/cis-benchmarks
  • PDQ: https://www.pdq.com
  • Automatic Updates for Windows 10: https://support.microsoft.com/en-us/help/15081/windows-turn-on-automatic-app-updates
  • Keepass: https://keepass.info
  • Lasspass: https://www.lastpass.com/password-manager
  • OpenVAS: https://www.openvas.org
  • DISA STIGs: https://iase.disa.mil/stigs/Pages/index.aspx
  • US CERT – Securing Your Web Browser: https://www.us-cert.gov/publications/securing-your-web-browser
  • OpenDNS: https://support.opendns.com/hc/en-us/articles/228007207-Windows-10-Configuration
  • Quad9: https://www.quad9.net/microsoft
  • Windows Defender Security Center: https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center
  • Elie Bursztein: https://elie.net/blog/security/concerns-about-usb-security-are-real-48-percent-of-people-do-plug-in-usb-drives-found-in-parking-lots
  • Microsoft Windows Firewall: https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security
  • ZoneAlarm: https://www.zonealarm.com/software/free-firewall
  • Microsoft Windows Backup and Restore: https://support.microsoft.com/en-us/help/17127/windows-back-up-restore
  • Amanda: http://www.amanda.org
  • Bacula: http://blog.bacula.org
  • Easeus: https://www.easeus.com/backup-software/tb-free.html
  • Veracrypt: https://www.veracrypt.fr/en/How%20to%20Back%20Up%20Securely.html
  • US CERT Ransomware Notice: https://www.us-cert.gov/sites/default/files/publications/Ransomware_Executive_One-Pager_and_Technical_Document-FINAL.pdf
  • NCSC Mitigating Malware: https://www.ncsc.gov.uk/guidance/mitigating-malware
  • NIST SP 1800-11: https://www.nccoe.nist.gov/sites/default/files/library/sp1800/di-nist-sp1800-11-draft.pdf
  • Xfinity Using Your Own Modem: https://www.xfinity.com/support/articles/using-your-own-modem-with-new-speeds
  • Verizon Routers: https://www.verizon.com/support/residential/internet/equipment/routers
  • AT&T U Verse Setup: https://www.att.com/esupport/article.html#!/u-verse-high-speed-internet/KM1175558?gsi=Lb27wrtt
  • Xfinity Wireless Gateway Features: https://www.xfinity.com/support/articles/advanced-xfinity-wireless-gateway-features
  • Verizon Home Network Security: https://www.verizon.com/support/residential/internet/security/home-network
  • AT&T SMB Support: https://www.att.com/esupport/article.html#!/smb-internet/KM1188420?gsi=xDPL7tW0
  • CIS Mobile Companion Guide: https://www.cisecurity.org/white-papers/cis-controls-mobile-companion-guide-2/
  • CIS Google Android Benchmark: https://www.cisecurity.org/benchmark/google_android
  • CIS Apple iOS Benchmark: https://www.cisecurity.org/benchmark/apple_ios
  • Qualys Browsercheck: https://browsercheck.qualys.com
  • Xfinity Change WiFi Security Mode: https://www.xfinity.com/support/articles/change-wifi-security-mode
  • Verizon Network Setup: http://www.verizon.com/support/smallbusiness/internet/fiosinternet/networking/setup/zyxeladapters/128755.htm
  • AT&T U Verse Setup: https://www.att.com/esupport/article.html#!/u-verse-high-speed-internet/KM1049997?gsi=1ysnu3
  • Verizon Guest WiFi Setup: https://www.verizon.com/cs/groups/public/documents/adacct/guest-wifisetupguide-smb.pdf
  • Xfinity Help Guests Get Online: https://www.xfinity.com/support/internet/help-guests-get-online/
  • HHS Security Awareness Training: https://www.hhs.gov/sites/default/files/fy18-cybersecurityawarenesstraining.pdf
  • MSISAC Subscription: https://learn.cisecurity.org/ms-isac-subscription
  • Two Factor Auth: http://twofactorauth.org/
  • Google Stay Safe from Phishing Scams: https://www.youtube.com/watch?v=R12_y2BhKbE
  • NIST You’ve Been Phished: https://www.nist.gov/video/youve-been-phished
  • OTA Alliance Cyber Incident Breach Response Guide: https://otalliance.org/system/files/files/initiative/documents/2017_cyber_incident_breach_response_guide.pdf
  • CMU Incident Response Plan: https://www.cmu.edu/iso/governance/procedures/docs/incidentresponseplan1.0.pdf
  • Oregon Incident Response Plan: https://www.oregon.gov/das/oscio/documents/incidentresponseplantemplate.pdf
  • DoJ Best Practices Victim Response and Reporting Cyber Incidents: https://www.justice.gov/sites/default/files/opa/speeches/attachments/2015/04/29/criminal_division_guidance_on_best_practices_for_victim_response_and_reporting_cyber_incidents2.pdf
  • NIST SP 800-61: https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-61r2.pdf
Previous

© Copyright 2019, Center for Internet Security Revision 6a1d880b.

Built with Sphinx using a theme provided by Read the Docs.