Rooba
/
tacticalrmm
mirror of https://github.com/amidaware/tacticalrmm.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity

wip script for print check

This commit is contained in:
silversword411 2021-09-02 08:23:05 -04:00
parent ddef2df101
commit 9724882578
No known key found for this signature in database
GPG Key ID: 6F4BD176F56B50CA
1 changed files with 22 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
scripts_wip/Win_SecCheck_Print_kb5005010.ps1 Normal file
View File

@ -0,0 +1,22 @@
# Checking for insecure by design print features being enabled
# See https://support.microsoft.com/en-us/topic/kb5005010-restricting-installation-of-new-printer-drivers-after-applying-the-july-6-2021-updates-31b91c02-05bc-4ada-a7ea-183b129578a7
$PointAndPrintNoElevation = (Get-ItemProperty -Path "HKLM:\Software\Policies\Microsoft\Windows NT\Printers\PointAndPrintNoElevation").NoWarningNoElevationOnInstall
$PointAndPrintUpdatePrompt = (Get-ItemProperty -Path "HKLM:\Software\Policies\Microsoft\Windows NT\Printers\PointAndPrintNoElevation").UpdatePromptSettings
if ($PointAndPrintNoElevation -Eq 1) {
Write-Output "Point and Print WarningNoElevationOnInstall set to true. WARNING: You are insecure-by-design."
exit 1
}
elseif ($PointAndPrintUpdatePrompt -Eq 1) {
Write-Output "Point and Print PointAndPrintUpdatePrompt set to true. WARNING: You are insecure-by-design."
exit 1
}
else {
Write-Output "WarningNoElevationOnInstall UpdatePromptSettings set to false. No vulnerabilities"
exit 0
}
Exit $LASTEXITCODE