Using Free Tool CIS CAT Lite to Assess System Security Configuration

Rollback to version 1

0:10 - 0:14

hello youtubers welcome back to my
0:14 - 0:15

nasdaq youtube channel
0:15 - 0:19

this is johnny a network and security
0:19 - 0:21

guy
0:21 - 0:24

when i'm wearing security hat
0:24 - 0:27

one of popular questions i got asked
0:27 - 0:28

is about
0:28 - 0:32

security of the system how i'm sure this
0:32 - 0:35

system has been configured securely
0:35 - 0:38

usually my answer is quite simple
0:38 - 0:42

that's wrong cis cat scanning
0:42 - 0:46

what is ciscat
0:46 - 0:49

this is just created the tool center for
0:49 - 0:51

internet security configuration
0:51 - 0:53

assessment tool
0:53 - 0:55

we are going to compare the target
0:55 - 0:58

configuration settings with cure
0:58 - 1:01

configuration settings recommended they
1:01 - 1:04

have 100 cs benchmarks for different
1:04 - 1:05

systems
1:05 - 1:07

after the comparison they're gonna give
1:07 - 1:10

you a report shows the score how to
1:10 - 1:12

secure your system and also give you
1:12 - 1:15

recommendation for how to remediate
1:15 - 1:18

those security holes you might have
1:18 - 1:21

this whole tool makes the scanning
1:21 - 1:24

validation and reporting much easier and
1:24 - 1:27

simpler for users who need to find out
1:27 - 1:30

the best security configuration for
1:30 - 1:31

their system
1:31 - 1:32

this is
1:32 - 1:35

very helpful and useful tool there are
1:35 - 1:37

two versions
1:37 - 1:41

such as cad flow and sas cad catalyte
1:41 - 1:44

in this video i'm gonna present it how
1:44 - 1:47

you can download cs catalyte how you can
1:47 - 1:50

run it and how you can do scan
1:50 - 1:52

for your target
1:52 - 1:53

now
1:53 - 1:56

let's jump into my lab and we can start
1:56 - 1:58

it
2:04 - 2:09

now let's take a look my lab topology
2:09 - 2:12

for this lab i have three machines
2:12 - 2:15

one is windows 2016
2:15 - 2:16

which we are gonna
2:16 - 2:20

launch cs cad lite from this machine to
2:20 - 2:23

do the scanning for windows 10 and
2:23 - 2:27

51 sec to local this dc
2:27 - 2:30

all those machines are in the domain
2:30 - 2:33

if you are using work groups and similar
2:33 - 2:36

operations
2:36 - 2:39

this is very simple network they're all
2:39 - 2:41

running in the same
2:41 - 2:44

network 192.168.2
2:44 - 2:47

if you have firewall between
2:47 - 2:51

your cis cad lite server and your
2:51 - 2:54

destinations you may need to open your
2:54 - 2:55

firewalls
2:55 - 3:00

but that will be in different topic
3:03 - 3:06

now let's download the cs cat lite
3:06 - 3:08

version free
3:08 - 3:09

cat tool
3:09 - 3:13

to scanning your destination
3:14 - 3:17

you can directly using the google to
3:17 - 3:20

search says cat lite the first link jump
3:20 - 3:21

out
3:21 - 3:23

that will be
3:24 - 3:26

this page
3:26 - 3:28

for this form what you need to do is you
3:28 - 3:30

don't need to provide your credit card
3:30 - 3:32

you private your minimum personal
3:32 - 3:34

information name
3:34 - 3:36

organization role
3:36 - 3:40

email sector country
3:40 - 3:42

how many employees how did you hear
3:42 - 3:44

about us
3:44 - 3:45

then
3:45 - 3:49

click get cs cad button
3:49 - 3:51

in couple minutes
3:51 - 3:52

you should be able to get the email like
3:52 - 3:54

this
3:54 - 3:57

cis center for internet security
3:57 - 4:00

says catalyte version 4
4:00 - 4:03

and the download link here
4:05 - 4:06

quick link
4:06 - 4:08

the downloading show happening
4:08 - 4:10

immediately
4:10 - 4:14

at about 148 megabytes
4:14 - 4:16

um place down your internet speed one
4:16 - 4:18

minute two minutes you should be able to
4:18 - 4:21

get it
4:21 - 4:24

so that how you can get it
4:24 - 4:26

you may also get the list
4:26 - 4:28

email as well to show you how to get
4:28 - 4:31

started with cis cad lite
4:31 - 4:33

that will help you
4:33 - 4:35

to start to use
4:35 - 4:37

this tool
4:38 - 4:40

you also can register for webmail
4:40 - 4:44

to get more informations
4:46 - 4:49

after you download the software
4:49 - 4:51

you will see
4:51 - 4:52

this zip file
4:52 - 4:57

says cad lite version 4.21.0
4:57 - 4:59

to run it
4:59 - 5:01

you don't need to install it
5:01 - 5:05

only thing you need to do extract all
5:08 - 5:09

i'm running
5:09 - 5:13

cs catalyte in my virtual machine
5:13 - 5:16

i'm giving a gigabyte to run
5:16 - 5:20

and for virtual cpu
5:20 - 5:21

it depending on
5:21 - 5:25

how many system you need to scan
5:25 - 5:27

usually
5:27 - 5:28

even four giga ram
5:28 - 5:30

to watch cpu
5:30 - 5:34

it's also more enough
5:37 - 5:40

once you unzip it you will get as
5:40 - 5:41

accessor
5:41 - 5:44

this folder
5:44 - 5:47

you will find out this assessor
5:47 - 5:50

dash gui exe file
5:50 - 5:54

to run it it is very simple just right
5:54 - 5:56

click this accessor
5:56 - 6:00

dash gui exe file run as administrator
6:00 - 6:05

you will see it shows cis cad pro access
6:05 - 6:09

in the windows title
6:09 - 6:12

if we are syncing this oh i maybe
6:12 - 6:13

download the wrong one
6:13 - 6:17

but actually the windows title shows
6:17 - 6:20

cscad pro accessor
6:20 - 6:23

eventually you will get cs cat light
6:23 - 6:24

version
6:24 - 6:25

since
6:25 - 6:26

that
6:26 - 6:29

restricted version from this floor
6:29 - 6:34

you will see here says cat light
6:35 - 6:38

it is using same web gui as pro version
6:38 - 6:40

only
6:40 - 6:43

thing is this is a restricted version
6:43 - 6:45

it's a light version and also you will
6:45 - 6:48

see they want you to
6:48 - 6:50

see the documentation which is pro
6:50 - 6:52

documentation you won't find too much
6:52 - 6:55

information about light but you will see
6:55 - 6:59

everything for the plot
7:03 - 7:05

once you launch the web degree scanning
7:05 - 7:07

the system gonna be very simple either
7:07 - 7:10

local or remote
7:10 - 7:11

the lite version
7:11 - 7:15

has no limitation how many targets you
7:15 - 7:17

can scan
7:17 - 7:18

so you can scan local and the remote
7:18 - 7:21

system that start from this local system
7:21 - 7:22

first
7:22 - 7:26

the local system is a windows 2016 as i
7:26 - 7:29

mentioned before so we're gonna
7:29 - 7:32

use
7:33 - 7:37

windows server list sas controls
7:37 - 7:41

assessment module implementation group 1
7:41 - 7:43

which is minimum requirement for the
7:43 - 7:46

server
7:46 - 7:48

and we're gonna choose list one
7:48 - 7:50

automated checks and the survey
7:50 - 7:51

questions
7:51 - 7:53

so you will get a lot of survey
7:53 - 7:58

questions for the interactive answers
7:58 - 8:00

one thing
8:00 - 8:01

the light version
8:01 - 8:04

this is different from pro version is
8:04 - 8:07

you only have limited benchmarks
8:07 - 8:10

for a pro version says dusty's provide
8:10 - 8:13

hundreds benchmarks for you to use but
8:13 - 8:16

here the benchmarks only limited a
8:16 - 8:18

couple from windows 10
8:18 - 8:20

ubuntu
8:20 - 8:21

google chrome
8:21 - 8:22

and the
8:22 - 8:25

minimum requirement for windows server
8:25 - 8:28

after you choose the benchmarks in the
8:28 - 8:29

profile
8:29 - 8:31

basically profile i was thinking it's
8:31 - 8:34

always baseline
8:36 - 8:38

and you can add it
8:38 - 8:41

so once you choose edit they will
8:41 - 8:42

give you
8:42 - 8:44

a text box to ask you
8:44 - 8:47

the questions
8:47 - 8:48

you can just
8:48 - 8:50

click okay okay
8:50 - 8:52

let about
8:52 - 8:57

29 questions for this survey
8:57 - 8:58

so
8:58 - 9:01

for me and just quickly
9:01 - 9:04

demonstrate the process i will pick
9:04 - 9:08

yes for all questions
9:23 - 9:26

so once all questions has been answered
9:26 - 9:28

let's select the profile and the
9:28 - 9:32

benchmark will be in this selected
9:32 - 9:34

section
9:34 - 9:35

after that
9:35 - 9:38

we can choose next
9:38 - 9:41

here report output options
9:41 - 9:43

since we are using light version we only
9:43 - 9:48

have html it's already select for us
9:48 - 9:51

if you using pro you can use in csv text
9:51 - 9:53

xml and json
9:53 - 9:55

and we can pick
9:55 - 9:59

the destination you leave default
9:59 - 10:01

you also can save a configuration file
10:01 - 10:03

for the future to use it and you don't
10:03 - 10:08

have to do all the selection again
10:08 - 10:10

next
10:10 - 10:13

so it's a sql
10:13 - 10:17

confirmation start assessment
10:17 - 10:19

assessments usually
10:19 - 10:20

take
10:20 - 10:24

two minutes to get it done
10:45 - 10:47

all right
10:47 - 10:50

we got a report
10:50 - 10:55

ma'am you can choose view html
10:55 - 10:58

that will show you a really nice report
10:58 - 11:01

in your browser
11:03 - 11:06

for my list machine automatic checks
11:06 - 11:08

failed 11
11:08 - 11:09

items
11:09 - 11:12

we have four passed
11:12 - 11:15

for user survey questions we got 29
11:15 - 11:17

questions since we selected yes for all
11:17 - 11:20

of them we passed 100
11:20 - 11:21

totally
11:21 - 11:23

77
11:23 - 11:25

pass
11:26 - 11:29

you should be able to see all check
11:29 - 11:32

details
11:35 - 11:38

for each failed items
11:38 - 11:41

you will see remediation recommendations
11:41 - 11:43

here
11:43 - 11:45

that should help you
11:45 - 11:46

to remedy
11:46 - 11:50

this failed item
11:50 - 11:55

so this is the local scanning
11:56 - 11:59

we also able to do the remote system
11:59 - 12:01

scanning
12:08 - 12:12

as mentioned before i have windows 10
12:12 - 12:14

setup as my target
12:14 - 12:19

and which is also joined local domain
12:19 - 12:22

i'm going to use him js catalyte
12:22 - 12:25

windows 2016 servers to scan is windows
12:25 - 12:27

10 and we also can do
12:27 - 12:30

that domain controller scan as well so
12:30 - 12:31

we can do
12:31 - 12:34

both
12:39 - 12:42

so you need to choose advanced for
12:42 - 12:45

remote target assistant
12:48 - 12:52

you're going to use windows 10 here
12:52 - 12:53

and one thing you may want to make sure
12:53 - 12:54

is
12:54 - 12:57

you can pin
12:58 - 13:00

your remote server
13:05 - 13:08

that's our
13:11 - 13:13

destination windows 10 server we can
13:13 - 13:16

check the name
13:18 - 13:21

windows 10 4
13:21 - 13:23

so once you confirm that
13:23 - 13:27

you can type your system name there
13:27 - 13:29

choose your system type
13:29 - 13:30

it's windows
13:30 - 13:32

in the future we also can do ubuntu
13:32 - 13:37

scanning by level b in different video
13:37 - 13:39

one thing you need to remember the win
13:39 - 13:43

rm windows remote management service has
13:43 - 13:44

to be up and running by default it
13:44 - 13:47

should be up and running already
13:47 - 13:49

if not in then you need to go back to
13:49 - 13:53

see is cat pro documentation to see how
13:53 - 13:55

to enable windows im how to use group
13:55 - 13:57

policy
13:57 - 13:58

to
13:58 - 14:01

enable indesign for your
14:01 - 14:05

destination username
14:06 - 14:10

i'm going to use a domain admin account
14:12 - 14:15

ip address
14:18 - 14:20

username actually
14:20 - 14:22

you need to specify the domain here as
14:22 - 14:26

well using the format that required
14:26 - 14:29

which is the username plus 51sec
14:29 - 14:32

code just make sure your domain name is
14:32 - 14:33

cracked
14:33 - 14:37

username scratch password is right
14:37 - 14:40

temporary pass we don't need a lot now
14:40 - 14:42

after you enter the destination
14:42 - 14:45

information you need to pick
14:45 - 14:48

the benchmarks
14:49 - 14:51

so we are going to use in windows 10
14:51 - 14:53

enterprise benchmark
14:53 - 14:54

we can
14:54 - 14:57

choose next generation windows security
14:57 - 14:59

there's a couple of other lines you can
14:59 - 15:01

choose we choose level 2
15:01 - 15:03

after all those
15:03 - 15:06

options you select it you can save it
15:06 - 15:09

it will add it into your target system
15:09 - 15:11

here
15:11 - 15:14

before you scan to next step you want to
15:14 - 15:17

make sure you have connections to the
15:17 - 15:19

target
15:21 - 15:25

if you see any errors happens here you
15:25 - 15:27

may want to go back to check your
15:27 - 15:28

settings
15:28 - 15:31

as you can see here i do see an error or
15:31 - 15:34

code creating a section
15:35 - 15:37

so we need to fix that
15:37 - 15:41

information before we can continue
15:41 - 15:44

so you choose your target system
15:44 - 15:46

and choose add it
15:46 - 15:50

and verify those configurations one by
15:50 - 15:52

one so we notice
15:52 - 15:55

we put that wrong ip here
15:55 - 15:58

let's save
15:58 - 16:00

and allow me to test the connection
16:00 - 16:03

again
16:11 - 16:12

now
16:12 - 16:14

alloys calm
16:14 - 16:17

connection establish it
16:17 - 16:21

let's go to the next step
16:23 - 16:25

choose our target system as i mentioned
16:25 - 16:28

before we can add more here target
16:28 - 16:30

system like we can add the domain
16:30 - 16:33

controller dc
16:34 - 16:37

windows
16:37 - 16:39

http
16:39 - 16:43

same thing
16:55 - 16:57

since it's a windows server so we
16:57 - 17:00

probably
17:00 - 17:01

need to change
17:01 - 17:03

the benchmarks so i just choose the
17:03 - 17:05

automated
17:05 - 17:08

subcontrols only
17:16 - 17:18

save
17:18 - 17:21

now we have two systems
17:22 - 17:24

so you need to choose or you can choose
17:24 - 17:27

multiple forefront using a control you
17:27 - 17:30

can choose two of them together to scan
17:30 - 17:33

i want to make sure we can go to the dc
17:33 - 17:37

as well let's test connection
17:47 - 17:49

so connection has been
17:49 - 17:51

tested successfully
17:51 - 17:55

establish it establish it
17:55 - 17:57

so let's uh
17:57 - 17:58

choose both
17:58 - 18:02

and go to next
18:17 - 18:22

we need a benchmark for our windows 10
18:22 - 18:24

believe we can choose this one choose
18:24 - 18:26

add
18:26 - 18:29

and save
18:29 - 18:32

so now it shows one so we need
18:32 - 18:35

benchmarks at least one benchmark for
18:35 - 18:37

each of system
18:37 - 18:39

next
18:39 - 18:42

again html has been selected for us
18:42 - 18:44

report
18:44 - 18:47

folder we keep default
18:47 - 18:50

then we do start
18:50 - 18:52

assessment
18:53 - 18:56

this may take um
18:56 - 18:58

two three minutes to get the post
18:58 - 19:01

dumping since it's remote it's slower
19:01 - 19:03

than doing a local
19:03 - 19:05

the process is the same
19:05 - 19:07

it created a connection
19:07 - 19:09

and the land goes through
19:09 - 19:12

all controls they need to
19:12 - 19:16

validate using script
19:16 - 19:18

and then validate all settings
19:18 - 19:22

and then come back with report
20:50 - 20:53

well after probably five minutes five
20:53 - 20:55

six minutes
20:55 - 20:57

the report
20:57 - 20:59

has been generated
20:59 - 21:02

we finished our scanning
21:02 - 21:06

so you will be able to see both reports
21:06 - 21:10

let's take a quick look here
21:20 - 21:24

it's for windows 10.
21:32 - 21:35

you also can check along
21:35 - 21:37

domain controllers
21:37 - 21:41

51 sec dc1
21:46 - 21:50

so now we finished our remote scanning
21:50 - 21:53

basically that's how you can use
21:53 - 21:56

this free tool
21:56 - 21:58

to validate your security configuration
21:58 - 22:00

on your target system
22:00 - 22:02

you don't have to pay
22:02 - 22:06

any if you are only using those basic
22:06 - 22:08

profiles
22:08 - 22:10

for your system for windows 10 and the
22:10 - 22:14

server ubuntu google clone
22:14 - 22:17

if you have more other system need to be
22:17 - 22:19

validated then you have to
22:19 - 22:23

get the license for your pro version
22:23 - 22:27

that will be in my different videos
22:27 - 22:31

that's all for this video how you can
22:31 - 22:34

use free tool
22:34 - 22:36

cis cad lite
22:36 - 22:39

to check your security settings on your
22:39 - 22:41

target
22:41 - 22:43

i hope you enjoyed it
22:43 - 22:45

if you find anything useful in this
22:45 - 22:47

video give me a thumb up
22:47 - 22:50

also please subscribe my channel if you
22:50 - 22:51

haven't
22:51 - 22:55

thank you for watching
22:59 - 23:02

[Music]
23:14 - 23:16

you

Title:: Using Free Tool CIS CAT Lite to Assess System Security Configuration
Description:: more » « less
Video Language:: English
Duration:: 23:14

	OEVIDEOS edited English subtitles for Using Free Tool CIS CAT Lite to Assess System Security Configuration
	OEVIDEOS edited English subtitles for Using Free Tool CIS CAT Lite to Assess System Security Configuration

English subtitles

Revisions Compare revisions

Revision 2 Edited

OEVIDEOS
Revision 1 Uploaded

OEVIDEOS

	Revision Number	Author	Created
	2	OEVIDEOS
	1	OEVIDEOS

Using Free Tool CIS CAT Lite to Assess System Security Configuration

Revisions Compare revisions

Our website uses cookies

Operating cookies (Required)