HardenTools
github.com/securitywithoutborders/hardentoolsA utility that disables a number of risky Windows features. These "features" are exposed by the OS and primary consumer applications, and very commonly abused by attackers, to execute malicious code on a victim's computer. So this tool just reduces the attack surface by disabling the low-hanging fruit.
HardenTools Source Code
Author
Description
Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
Homepage
License
GPL-3.0
Created
11 Jan 17
Last Updated
12 Sept 24
Latest version
Primary Language
Go
Size
3,454 KB
Stars
2,883
Forks
254
Watchers
2,883
Language Usage
Star History
Top Contributors
- @obsti8383 (262)
- @botherder (132)
- @Dyras (2)
- @thechampagne (2)
- @Lissy93 (1)
- @PeterTonoli (1)
Recent Commits
- obsti8383 (01 Apr 24)
Update README.md add Windows ASR rules error in case of third-party Antivirus solution is in use.
- obsti8383 (28 Oct 23)
Merge pull request #129 from obsti8383/updateAndGuiImprovements update fyne.io and improve UI
- Florian Probst (28 Oct 23)
update fyne.io and improve UI
- obsti8383 (30 Sept 23)
Merge pull request #128 from thechampagne/master fix memory leak
- XXIV (30 Sept 23)
import unsafe in utils.go
- XXIV (25 Sept 23)
fix memory leak
- obsti8383 (30 Jul 23)
Merge pull request #127 from obsti8383/removeCycloneDX Remove CycloneDX SBOM due to missing security fixes in dependencies (circl)
- obsti8383 (30 Jul 23)
Remove CycloneDX SBOM due to missing security fixes in dependencies since May 11 (https://github.com/CycloneDX/cyclonedx-gomod/pull/295)
- obsti8383 (25 Jun 23)
Merge pull request #125 from obsti8383/feature/libreoffice LibreOffice Hardening using Registry
- obsti8383 (25 Jun 23)
optimized version of LibreOffice hardenings #30
- obsti8383 (25 Jun 23)
first version of LibreOffice hardenings #30
- obsti8383 (11 Mar 23)
Merge pull request #122 from obsti8383/updateFyneIOandChangeHelpDialog Disable OneNote attachments, extend help dialog, update dependencies
- obsti8383 (11 Mar 23)
update dependencies
- Florian Probst (11 Mar 23)
OneNote: Fix Registry Path, works now
- obsti8383 (11 Mar 23)
onenote, next try
- obsti8383 (11 Mar 23)
block attachments in onenote, untested
- obsti8383 (18 Feb 23)
show all harden items in main help window
- obsti8383 (29 Dec 22)
Merge pull request #119 from obsti8383/helpButtonsAndSomeUpdates Add help buttons and some cleanups/fixes/updates;
- obsti8383 (29 Dec 22)
add help buttons;fix splash;update libs except fyne.io;some minor code cleanups
- obsti8383 (09 Oct 22)
Merge pull request #116 from obsti8383/master add edge download blocker to PUA module
- obsti8383 (09 Oct 22)
gofmt and switch go go1.19
- obsti8383 (09 Oct 22)
Merge remote-tracking branch 'upstream/master'
- Florian Probst (23 Jul 22)
add edge download blocker to PUA module
- Florian (16 Jun 22)
Merge pull request #114 from obsti8383/master Optimize Makefile + Generate CycloneDX BOM
- obsti8383 (16 Jun 22)
compile with golang 1.18.3 to fix potential security issue
- obsti8383 (16 Jun 22)
automate go install from tools.go in Makefile
- obsti8383 (16 Jun 22)
include cyclonedx-gomod in tools.go
- obsti8383 (16 Jun 22)
go mod tidy + install bom generator in Makefile
- obsti8383 (16 Jun 22)
remove unnecessary env in Makefile
- obsti8383 (16 Jun 22)
create software bill of materials (SBOM/BOM) in Makefile
HardenTools Website
Website
GitHub: Letβs build from here Β· GitHub
GitHub is where over 100 million developers shape the future of software, together. Contribute to the open source community, manage your Git repositories, review code like a pro, track bugs and features, power your CI/CD and DevOps workflows, and secure code before you commit it.
Redirects
Does not redirect
Security Checks
All 66 security checks passed
Server Details
- IP Address 140.82.112.4
- Hostname lb-140-82-112-4-iad.github.com
- Location San Francisco, California, United States of America, NA
- ISP GitHub Inc.
- ASN AS36459
Associated Countries
- US
Saftey Score
Website marked as safe
100%
Blacklist Check
github.com was found on 0 blacklists
- ThreatLog
- OpenPhish
- PhishTank
- Phishing.Database
- PhishStats
- URLhaus
- RPiList Not Serious
- AntiSocial Blacklist
- PhishFeed
- NABP Not Recommended Sites
- Spam404
- CRDF
- Artists Against 419
- CERT Polska
- PetScams
- Suspicious Hosting IP
- Phishunt
- CoinBlockerLists
- MetaMask EthPhishing
- EtherScamDB
- EtherAddressLookup
- ViriBack C2 Tracker
- Bambenek Consulting
- Badbitcoin
- SecureReload Phishing List
- Fake Website Buster
- TweetFeed
- CryptoScamDB
- StopGunScams
- ThreatFox
- PhishFort
Website Preview
HardenTools Reviews
More Windows Defences
-
Capture and interprets network traffic based on a set of rules, and depending on the interactions certain assignments are blocked. Open source, written in Go and delivered as a single executable.
-
A portable app that lets you disable core Windows features (such as Cortana, Edge) and control which data is passed to Microsoft. (Note: Free, but not open source).
-
Portable app with a GUI, that makes it really easy to safely block key telemetry features, from sending data to Microsoft and other third parties (It uses the Windows API to interact with key features of Local Group Police, Services, Tasks Scheduler, etc).
-
Anti low-level keylogger: Provides full system-wide key press protection, and target window screenshot protection.
-
Provides protection against software keyloggers. Encrypts keypresses at driver level, and decrypts at application level, to protect against common keyloggers.
-
Portable virtual keyboard. Useful for protecting from keyloggers when using a public computer, as it can run of a USB with no administrative permissions.
-
Useful utility, that attempts to terminate known malware processes, so that your normal security software can then run and clean your computer of infections.
-
A utility for configuring encryption protocols, cyphers, hashing methods, and key exchanges for Windows components. Useful for sysadmins on Windows Server.
-
Internet traffic control and monitoring tool.
-
Scans for accessibility tools backdoors via RDP.
-
A CLI utility that shows file version number, timestamp information, and digital signature details.
-
Clears cache and deletes temporary files very effectively. This frees up disk space, improves performance, but most importantly helps to protect privacy.
-
Group Policy objects, compliance checks, and configuration tools that provide an automated and flexible approach for securely deploying and maintaining the latest releases of Windows 10.
-
Detects infected USB removable devices.
-
Rootkit detection and removal utility.
-
Blocks malicious background applications from taking screenshots.
-
Blocks unauthorized webcam access.
-
Open source GUI app built upon PowerShell, allowing you to perform a quick and easy privacy check, on Windows 10 systems.
-
Light-weight, portable app for controlling the many privacy-related settings within Windows 10- with the aim of helping to keep private data, private.
-
Good alternative to CCleaner, for deleting unnecessary data - logs, cache, history, etc.
About the Data: HardenTools
API
You can access HardenTools's data programmatically via our API.
Simply make a GET
request to:
https://api.awesome-privacy.xyz/operating-systems/windows-defences/hardentools
The REST API is free, no-auth and CORS-enabled. To learn more, view the Swagger Docs or read the API Usage Guide.
About the Data
Beyond the user-submitted YAML you see above, we also augment each listing with additional data dynamically fetched from several sources. To learn more about where the rest of data included in this page comes from, and how it is computed, see the About the Data section of our About page.
Share HardenTools
Help your friends compare Windows Defences, and pick privacy-respecting software and services.
Share HardenTools and Awesome Privacy with your network!