This page lists publications on the hardening of applications and IT equipment.
Detecting and mitigating Active Directory compromises
This publication provides an overview of techniques used to compromise Active Directory, and recommended strategies to mitigate these techniques. By implementing the recommendations in this publication, organisations can significantly improve their Active Directory security, and therefore their overall network security posture.
End of support for Microsoft Windows and Microsoft Windows Server
Support for Microsoft Windows and Microsoft Windows Server users following the expiration of the specified servicing timeline.
Hardening Linux workstations and servers
This publication has been developed to assist organisations in understanding how to harden Linux workstations and servers.
Hardening Microsoft 365, Office 2021, Office 2019 and Office 2016
Workstations are often targeted by malicious actors using malicious websites, emails or removable media in an attempt to extract sensitive information. Hardening applications on workstations is an important part of reducing this risk.
Hardening Microsoft Windows 10 and Windows 11 workstations
This publication provides recommendations on hardening workstations using Enterprise and Education editions of Microsoft Windows 10 and Windows 11. While this publication refers to workstations, most recommendations are equally applicable to servers (with the exception of Domain Controllers) using Microsoft Windows Server. Security features discussed in this publication, along with the names and locations of Group Policy settings, are taken from Microsoft Windows 10 version 22H2 and Windows 11 version 23H2.
Implementing application control
Application control is one of the most effective mitigation strategies in ensuring the security of systems. As such, application control forms part of the Essential Eight from the Strategies to mitigate cybersecurity incidents. This publication provides guidance on what application control is, what application control is not, and how to implement application control.
Implementing multi-factor authentication
This publication has been developed to provide guidance on what multi-factor authentication is, different multi-factor authentication methods that exist and why some multi-factor authentication methods are more secure, and therefore more effective, than others.
IoT Secure by Design guidance for manufacturers
This guidance has been produced for manufacturers in order to help them implement thirteen Secure by Design principles.
Restricting Microsoft Office macros
This publication has been developed to discuss approaches that can be applied by organisations to secure systems against malicious Microsoft Office macros while balancing both their business and security requirements.