Skip to content

Releases: microsoft/PowerStig

Release of version 4.0.0

23 Sep 20:12
@jcwalker jcwalker
4.0.0-PSGallery
d16b8ab
Compare
Choose a tag to compare
Release of version 4.0.0

Update PowerSTIG parsing for Windows Sever 2016 STIG - Ver 1, Rel 9 [#498] (#498)
Fixed #507: Get-HardCodedRuleLogFileEntry Errors on RegistryRule
Update PowerSTIG to leverage the GPRegistryPolicyDsc resource for Local Group Policy automation: #497
Update PowerSTIG to enable the logfile framework to consume a hashtable for HardCodedRule: #494
Update PowerSTIG to pass OrgSettings in via configuration hashtable: #372
Update support for SQL Server 2012 Database STIG, Version 1, Release 19 #482
Fixed #478: SQL STIG Instance V-40936 Fails to apply
Update PowerSTIG to automate applying the IIS 8.5 STIG, Version 1 Release 8. #469
Fixed #476: AuditSetting Rule for Windows STIGs has an incorrect operator when evaluating Service Pack information
Added support for Dot Net Framework 4.0 STIG, Version 1, Release 8 #447
Added support for Windows 10 STIG, Version 1, Release 17 & 18: #466
Added support for Windows 2012 Server DNS STIG, Version 1, Release 12 #464
Update PowerSTIG to automate applying the Windows Server 2012R2 DC & MS STIG, Version 2, Release 17 & 16 respectively. #456
Fixed #444: Duplicate principals in Permission Rule (Registry)
Updated logfile in 2012R2 DC STIG leveraging HardCodedRule to automate additional STIG rules. #446
Updated logfile in 2012R2 MS STIG leveraging HardCodedRule to automate additional STIG rules. #448
Declarative definition of a rule in the StigData log file to provide a standard way to populate unautomated rules #435
Updated PowerSTIG to leverage AuditSetting instead of the Script resource. Additionally renamed WmiRule to AuditSettingRule #431
Fixed #419: PowerStig is creating resource xSSLSettings with the wrong value for Name.
Added support for Windows Defender, Version 1, Release 5 #393
Added support for Internet Explorer 11 Version 1, Release 17 #422
Added support for Server 2016 STIG, Version 1, Release 8 #418
Update PowerSTIG to enforce additional rules in the SQL Server 2012 STIG #438
Added support for Windows Defender Antivirus STIG, Version 1, Release 6 #462
Added support for Firefox STIG v4r26 #458
Updated logfile in DotNet Framework STIG leveraging HardCodedRule to automate additional STIG rules. #454
Fixed #493: IIS 8/5 Server STIG rule V-76745 is referencing the incorrect IIS default path
Fixed #505: Missing reg key setting on V-76759 IIS Server 8.5 v1R7

Assets 2
Loading

Release of version 3.3.0

12 Aug 15:55
@jcwalker jcwalker
3.3.0-PSGallery
1f3b97a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 3.3.0
  • Added support for Windows 10, Version 1, Release 17 #442
  • Updated PowerSTIG to leverage AuditSetting instead of the Script resource. Additionally renamed WmiRule to AuditSettingRule #431
  • Fixed #419: PowerStig is creating resource xSSLSettings with the wrong value for Name.
  • Added support for Windows Defender, Version 1, Release 5 #393
  • Added support for Internet Explorer 11 Version 1, Release 17 #422
  • Added support for Server 2016 STIG, Version 1, Release 8 #418
Assets 2
Loading

Release of version 3.2.0

24 May 17:51
@athaynes athaynes
3.2.0-PSGallery
49c54ed
Compare
Choose a tag to compare
Release of version 3.2.0
  • Added support for IIS 8.5 Server STIG, Version 1, Release 7 #399
  • Fixed #373: Registry resource does not handle null values for ValueData contained in Processed STIGs
  • Fixed #376: SQL STIG Rules V-41021 (Instance STIG) and V-41402 (Database STIG) fail to apply when applying to a SQL instance that is NOT name the default (MSSQLSERVER).
  • Fixed #377: SQL Instance Rule V-40936 fails when Set-TargertResource is ran
  • Fixed #280: HKEY_CURRENT_USER is not needed with the cAdministrativeTemplateSetting composite resource. (Regression Issue)
  • Fixed #385: IIS Server STIG V-76681 does not parse correctly
  • Added support for Office 2016 STIGs #370
  • Added support to Automate Application Pool Recycling for IisSite_8.5 #378
  • Added support for Windows Server 2012R2 DC V2R16 #398
  • Added support for update Windows Server 2012 MS STIG v2r15 #395
  • Added support for Firefox STIG v4r25 #389
  • Added entry in log file for IISSite 1.7 so rule v-76819 parses as an xWebConfigurationProperty #407
  • Added IISSite v1.7 #400
  • Fixed #403: DotNet STIG V1R7 update
Assets 2
Loading

Release of version 3.1.0

01 Apr 18:55
@athaynes athaynes
3.1.0-PSGallery
515d1be
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 3.1.0

UPDATES

  • Removed duplicate code from rule class constructors
  • Migrated from Get-WmiObject to Get-CimInstance to support PowerShell Core
  • Migrated to PSDscResources #345
  • Migrated to ComputerManagementDsc #342
  • Fixed #358: Update PowerSTIG Duplicate Rule handling and capability

Added the following STIG

  • Windows Defender V1R4 #344
Assets 2
Loading

Release of version 3.0.1

11 Mar 23:07
@athaynes athaynes
3.0.1-PSGallery
7128be8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 3.0.1

UPDATES

  • Fixed #350: Updates to fix Skip rules not working correctly
  • Fixed #348: Update to DnsServer Schema to correct typo.
Assets 2
Loading

Release of version 3.0.0

01 Mar 16:04
@athaynes athaynes
3.0.0-PSGallery
e741e6c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 3.0.0

NEW

  • Introduces class support for each rule type
  • The STIG class now contains an array of rule objects vs xml elements
  • Orgsettings, Exceptions, and Rule skips are all supported by the Rule base class
  • Rule help is provided for any loaded rule.
    • See the wiki for more information.
  • Major code refactor to simplify maintenance and usage
  • [Breaking Change] The STIG class constructor no longer accepts Orgsettings, Exceptions, or Rule skips
    • That functionality has move to the load rule method
  • DSC composite resource parameter validation for version numbers has been removed
    • The STIG class validates all input and will throw an error if invalid data is provided.
  • The Get-StigList has be updated and renamed to Get-Stig to return the STIG class

UPDATES

  • Fixed #241: [WindowsFeatureRule] PsDesiredStateConfiguration\WindowsOptionalFeature doesn't properly handle features that return $null

  • Fixed #258: New-StigChecklist will not accept a path without an explicit filename

  • Fixed #243: [V-46515] Windows-All-IE11-1.15 Rawstring typo

  • Fixed #289: Updated DocumentRule and DocumentRuleConvert Classes to parse correctly.

  • Fixed #284: [V-74415] [V-74413] Windows 10 STIG rule V-74415 and V-74413 should not contain white space in key

  • Fixed 290: [V-76731] IIS Server STIG V-76731 fails to properly set STIG guidance because rule is not split.

  • Fixed 314: Update PowerSTIG to Utilize LogTargetW3C parameter in xWebAdministration 2.5.0.0.

  • Fixed 334: Update PowerStig to utilize AccessControlDsc 1.3.0.0

  • Fixed 331: 2012/R2 [V-39325] 2016 [V-73373], [V-73389] PermissionRule.Convert CheckContent Match Parser Update

  • Fixed 320: IIS Site STIG doesn't correctly convert STIGS that contain "SSL Settings" in raw string

  • Added the following STIGs

    • IIS Site 8.5 V1R6 #276
    • Windows Firewall STIG V1R7 #319

  • Removed the following STIGs

    • Windows Server 2012 R2 DC 2.12
    • Windows Server 2012 R2 DSN 1.7
    • Active Directory Domain 2.9
    • IIS Server 8.5 1.3
    • IIS Site 8.5 1.2
    • Removed: Internet Explorer 1.13
Assets 2
Loading

Release of version 2.4.0.0

07 Feb 19:36
@athaynes athaynes
2.4.0.0-PSGallery
b80fcb8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 2.4.0.0

  • Fixed #244: IIS Server rule V-76727.b org setting test fails

  • Fixed #246: IIS Server rule V-76737 contains an incorrect value

  • Fixed #225: Update PowerStig integration tests to consolidate duplicate code.

  • Fixed #160: PowerStig.Convert needs to handle new registry rules without affecting existing code

  • Fixed #201: Update PowerStig integration tests to account for skips and exceptions.

  • Fixed #260: FireFox Composite Resource configuration applies correctly, but never passes a Test-DscConfiguration.

  • Fixed #244: IIS Server rule V-76727.b org setting test fails

  • Fixed #265: Fixed UserRightsAssignment split rule bug.

  • Fixed #267: Fixed winlogon registry path parser bug.

  • Fixed #238: Adds regex tracker for RegistryRule regex's.

  • Fixed #274: UserRightsAssignment composite resource does not leverage the Force Parameter.

  • Fixed #280: HKEY_CURRENT_USER is not needed with the cAdministrativeTemplateSetting composite resource.

  • Windows Server 2012R2 Fixes

    • V-36707 is now an org setting
    • (DC only) V-2376 - V-2380 are migrated from manual to account policy rules.

  • Added the following STIGs

    • SQL Server 2016 Instance V1R3 #186
    • Windows Defender Antivirus V1R4 #236
    • Mozilla Firefox V4R24 #261
    • Windows Server 2016 V1R6 #169
    • Windows Server 2016 V1R7 #251
    • SQL Server 2012 Database V1R18 #263
    • Windows Server 2012R2 DC V2R15 #267
    • Windows 10 V1R16 #269
    • IIS Server 8.5 V1R6 #256
    • Windows Server 2016 V1R6 #169
    • Windows Server 2016 V1R7 #251
    • Windows Server 2012R2 DNS V1R11 STIG #265
    • AD Domain V2R12 #270
Assets 2
Loading

Release of version 2.3.2.0

18 Dec 14:56
@athaynes athaynes
2.3.2.0-PSGallery
41b1938
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 2.3.2.0
  • Fixed #215: Org settings wont apply for DotNet STIG
  • Fixed #216: DotNet STIGs are misnamed
  • Fixed #207: SQL Server Database rules fail to apply
  • Fixed #208: Update PowerSTIG to use SQLServerDsc 12.1.0.0
  • Fixed #220: Update PowerSTIG to use xWebAdministration 2.3.0.0
Assets 2
Loading

Release of version 2.3.1.0

07 Dec 13:26
@athaynes athaynes
2.3.1.0-PSGallery
be15cdf
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 2.3.1.0
  • Fixed #212: SDDL strings are incorrectly split in the xRegistry resource
  • Fixed #180: IisSite SkipRuleType and SkipRule fail to skip rules
Assets 2
Loading

Release of version 2.3.0.0

30 Nov 08:52
@athaynes athaynes
2.3.0.0-PSGallery
9ddd4cc
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Release of version 2.3.0.0

  • Windows 10 Fixes

    • V-63795 - Changed from manual to registry rule ## HIGH IMPACT CHANGE ##

  • Windows Server 2012R2 Fixes

    • V-1089 - Corrected text
    • V-21954 - Changed from manual to registry rule ## HIGH IMPACT CHANGE ##
    • V-26070 - Corrected key path
    • V-36657 - Corrected key path
    • V-36681 - Corrected key path

  • Added the following STIGs

    • IIS Server 8.5 STIG V1R5
    • Microsoft Outlook 2013 STIG V1R13
    • DotNet Framework 4.0 STIG V1R6
    • IIS Site 8.5 STIG V1R5
    • Windows Domain V2R11
    • FireFox 4.23 STIG
    • Windows Server 2012R2 DC V2R14
    • Windows Server 2012R2 MS V2R14
    • Windows 10 V1R15
Assets 2
Loading