This post will describe the process of using reviewing, configuring and implementing CIS controls in your End User Computing Environment.
Please note that this will cost time if you want to go down the ‘free’ route but its worth it in the long run!
This post will describe the process of using FSLogix App Masking to hide the core set of tools and utilities that an attacker will try to gain access to in order to exploit your platform.
This will need testing before you implement this into production.
This post will outline the reasons why you should take a look at your Citrix Policies that come out the box and how to secure them.
Not all defaults are best, they make users happy but what about your SecOps teams?
This post will show you how to gather information from the Nutanix Prism Central API using PowerShell.
This code can also be wrapped into a function and re-used to get any information back from the API.
This post will show you how to secure the File Open-With dialogue box that will potentially allow an attacker to access areas of your virtual desktop that you would otherwise not want them to.
This post will walk you through securing your Citrix NetScaler services using the Geo IP capabilities built into the NetScaler.
This script will configure an Always Up Service on your NetScaler. This can be used to bind to Virtual Servers on Port 80 with a Redirect to ensure all traffic passes to port 443. Please note that this will alter the configuration on your Citrix NetScaler and should be tested before implementing into your production environment.
This post will walk you through securing lateral movement in your EUC environment.
This will help with security as it will prevent your users moving from one system to the next in your production environment.
This post will walk you through securing your local drive access on your end points.
This will help with security as it will prevent your users browsing the local system and ‘testing’ out access.
This post will outline the ways in which you can secure PowerShell in your EUC environment.
Please note that this is not specific to Citrix and will work on any remote desktop technology stack
[Environment]::SetEnvironmentVariable(‘__PSLockdownPolicy’, 4, ‘Machine’)
