Skip to content
A PowerShell script for performing a build review of a Windows host
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Collection_Functions
Functions
Policy
old scripts
.gitattributes
BuildReview.psd1
BuildReview.psm1
LICENSE
README.md

README.md

Setup

From a PowerShell window run the following:

Import-Module "C:\path\to\root\folder\BuildReview.psd1"
New-BuildReviewCollector

You should now have a wsus cab file and a ps1 in the root of your %userprofile% folder. You need these both on the system to be audited, note the wsus cab file must be on the root of the C:\ drive; the script can be anywhere.

Running the Script

You might find the script fails to run even when running as an administrative PowerShell window, issue the following command;

Set-ExecutionPolicy -ExecutionPolicy Bypass -Scope Process -Force

Process is used here as it will ensure that after PowerShell is closed the client's security is restored.

To run simply launch PowerShell as an administrator then issue:

.\BuildReview.ps1

In cases were a policy is enforcing the execution policy simply run this instead;

iex [System.IO.File]::ReadAllText('c:\BuildReview.ps1')

Exporting Results

The XML results for each host will be saved to your desktop, take the XMLs and save in 1 folder on your own machine. Now issue the following command;

Export-AsHTML -InputFolder C:\Results\

A HTML file will be saved to C:\Results and any useful files collected will be stored in the sub directory tool-output.

Coverage

It takes a lot of time to check each registry value is correct, I will get to the end eventually.

In the meantime ensure you read the raw XML results file generated as you will see blank results for some collections/groups/checks depending on the OS. Additionally, it is recommend each reported issue is verified to ensure accuracy.

In Scope:

  • Windows 2012 R2 (works best)
  • Windows 2008 R2
  • Windows 2016
  • Windows 8.1
  • Windows 10
  • Windows 7

Out of Scope:

  • Windows 2012
  • Windows 2008
  • Windows Vista
  • Windows 8
  • Windows XP
  • Windows 2000 or older
You can’t perform that action at this time.