Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber

Local Group Policy Editor plus more, for all Windows editions

Group Policy Eater is a PowerShell module that aims to gather information about Group Policies but also allows fixing issues that you may find in them.

Windows 11 secure group policy for standalone devices

Active Directory bridging tool suite

Privacy and security baseline for personal Windows 10 and Windows 11

An admittedly frivolous (and infrequently updated) attempt to harden Windows 10.

A group-policy enabled utility for logging off idle windows user sessions

Tool to parse the Group Policy Preferences XML file which extracts the username and decrypts the cpassword attribute.

PowerShell scripts/GUI tools for the enterprise to harden Windows Defender Firewall via group policy (GPO). These can be used to enforce network level application whitelisting and strengthen the security posture of devices to defend against attacks such as software supply chain and can be used with privileged access workstations (PAW).

PowerShell Policy Editor

Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.

WinPriv is a utility that can enable privileges and virtually alter registry settings within a target process, amongst other things.

Collabora Office / LibreOffice Windows Group Policy Template

A way to manage Group Policy Preferences through PowerShell

Everything you need to know about becoming a Microsoft Certified: Windows Server Hybrid Administrator Associate!

DSC resources used to apply and manage local group policies by modifying the respective .pol file.

Windows Server Management Tools - collection of Server Management Tools by community

The main goal of this project is the configuration and control of various types of devices operating in a corporate environment. Information security is the main direction of development. Roles have default settings that can be dynamically overridden using "inventories" folder rules based on subnet, host group (organizational unit or branch), OS.