logo

Windows information security basics

Automating security updates

Easy

About the importance of Windows security updates

Windows security updates are a critical part of system protection as they fix known vulnerabilities and improve both security and overall stability of the operating system. Microsoft regularly releases updates for Windows, including security updates, feature updates, and other fixes.

Patch Tuesday

Clock starts ticking from Tuesday

Because at the moment Microsoft releases security updates to the world, criminals (and of course also legitimate security researchers) begin reversing, that is, reverse-engineering the updates to gain an understanding of what vulnerabilities have been fixed.

Soon vulnerabilities and their technical details are known to criminals, and exploits are being written for them, i.e. attack code that can exploit vulnerabilities.

Then the exploit is used, and all Windows systems that have not installed updates at this stage are at risk.

How Updates Work

The Windows update process is designed to be as seamless as possible for the user. The operating system automatically checks for new updates from Microsoft's servers, downloads them, and notifies the user when they are ready to be installed. In some cases, the system may require a restart to complete the updates.

Review of Updates

You can see the current status in Windows Update settings.

Automation of Updates

Windows allows users to automate the update process, ensuring that the system stays up to date without manual intervention. You can do this with a group policy.

Open Group Policy Management console and modify the domain GPO policy.

Open Computer Configuration -> Policies - Administrative Templates -> Windows Components -> Windows Update

From the Windows Update section, select the option "Configure Automatic Updates". Click on it on the right and select "Edit".

Change the settings so that updates are installed automatically (4 - Auto download and schedule the install). Choose a suitable time and day for installing the updates.

In order for the settings to take effect immediately, run gpupdate /force in the PowerShell terminal.

Tasks

Windows practice

The lab takes a couple of minutes to start up, please wait patiently and add more time if needed. You don't need to close the lab between switching modules in this course. You can log in to the server via RDP with the username "EVILCORP\john.doe"and the password "Letmein123!"

Enable automatic updates

When automatic updates are enabled, run Check.ps1 and enter flag 4.

Ticket 4

hakatemia pro

Ready to become an ethical hacker?
Start today.

As a member of Hakatemia you get unlimited access to Hakatemia modules, exercises and tools, and you get access to the Hakatemia Discord channel where you can ask for help from both instructors and other Hakatemia members.