So you have the basics OS Hardening complete and want to level up your security again. Let’s discuss what we can do to add another layer of defenses to our systems; specifically the Windows OS. To build these defenses we need to have an understanding of the threats the system may face. I will be focusing on threats to End User Windows Systems, but most of my recommendations will also apply to Windows Servers.

Short on time? TLDR