Description

This course focuses on the essential techniques and best practices for securing Windows servers through specific, high-impact hardening measures. You will learn how to shrink your attack surface, enforce strict policies, and monitor your infrastructure to mitigate modern cyber threats.

Key Highlights

• Securing Access Points: Hardening RDP and managing administrative accounts.
• Attack Surface Reduction: Disabling unnecessary roles and services to minimize     vulnerability.
• Policy & Patch Management: Leveraging Group Policy and PowerShell for automated security.

Continuous Monitoring: Mastering Event Logs to track and respond to suspicious activity.

What You Will Learn

• Master Perimeter & Service Control

Learn to secure the "Gatekeeper" by hardening RDP and renaming default accounts. You will also practice the "Minimalist Server" approach by stripping away non-essential services like the Print Spooler and Remote Registry.

• Architect Security Policies

Dive into the Local Group Policy Editor ($gpedit.msc$) to implement User Rights Assignments. You will learn how to match specific security threats to the exact policy settings required to mitigate them.

• Implement Update & Audit Protocols

Develop a "Patch Protocol" using PowerShell to manage updates and understand the significance of "Patch Tuesday." You will also learn to "Watch the Watchmen" by configuring Audit Policies and analyzing Event IDs in the Security Log to identify brute-force attacks.

• Final Hands-on Application

Apply your knowledge in a final lab where you will secure a fresh Windows Server VM. You will be tasked with achieving a "High Security" rating on a Hardening Scorecard by fixing vulnerabilities in a live mock environment.