Infrastructure security assessment: host and OS hardening, patch posture, exposed services, build review, and configuration baselines.
51 checks · progress and notes saved in your browser
Baseline OS hardening for Linux and Windows hosts — services, accounts, and filesystem controls measured against recognized benchmarks.
Patch posture and vulnerability exposure: missing updates, end-of-life software, and known kernel-level local privilege escalation.
Service exposure and configuration: unnecessary listeners and default configs, remote management (SSH/RDP) hardening, and scheduled-task / cron abuse.
Local privilege escalation and access control on Linux and Windows, plus credentials stored on the host.
Audit logging coverage and central log forwarding, plus time synchronization and log integrity.