GARAGENUM
/
Win-Debloat-Tools
mirror of https://github.com/LeDragoX/Win-Debloat-Tools
13
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Checking if the registry folder exists

Browse Source
main
LeDragoX 4 years ago committed by Plínio Larrubia
parent 673ee7eba2
commit d9acdb112b
No known key found for this signature in database
GPG Key ID: 057B0A87CB137C69
1 changed files with 7 additions and 4 deletions
Show Stats Download Patch File Download Diff File

11
scripts/all-in-one-tweaks.ps1
Unescape Escape View File

@ -488,11 +488,12 @@ function TweaksForSecurity {
Write-Host "+ Ensure your Windows Defender is ENABLED, if you already use another antivirus, this will make nothing."
Set-MpPreference -DisableRealtimeMonitoring $false -Force
Write-Host "= Disabling SMB 1.0 protocol... (https://techcommunity.microsoft.com/t5/storage-at-microsoft/stop-using-smb1/ba-p/425858)"
# https://techcommunity.microsoft.com/t5/storage-at-microsoft/stop-using-smb1/ba-p/425858
Write-Host "= Disabling SMB 1.0 protocol..."
Set-SmbServerConfiguration -EnableSMB1Protocol $false -Force
# Enable strong cryptography for .NET Framework (version 4 and above)
Write-Host "+ Enabling .NET strong cryptography... (https://stackoverflow.com/questions/36265534/invoke-webrequest-ssl-fails)"
# Enable strong cryptography for .NET Framework (version 4 and above) - https://stackoverflow.com/questions/36265534/invoke-webrequest-ssl-fails
Write-Host "+ Enabling .NET strong cryptography..."
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319" -Name "SchUseStrongCrypto" -Type DWord -Value 1
Set-ItemProperty -Path "HKLM:\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319" -Name "SchUseStrongCrypto" -Type DWord -Value 1
@ -518,10 +519,12 @@ function TweaksForSecurity {
# https://docs.microsoft.com/pt-br/windows/security/identity-protection/user-account-control/user-account-control-group-policy-and-registry-key-settings
Write-Host "+ Raising UAC level..."
If (!(Test-Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System")) {
New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System" | Out-Null
}
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System" -Name "ConsentPromptBehaviorAdmin" -Type DWord -Value 5
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System" -Name "PromptOnSecureDesktop" -Type DWord -Value 1
#
Write-Host "Enabling Meltdown (CVE-2017-5754) compatibility flag..."
If (!(Test-Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat")) {
New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat" | Out-Null

Write Preview
Loading…
Cancel
Save