...

Table of Contents

Anchor_Toc148340569_Toc148340569Introduction
Anchor
_Toc148340569
_Toc148340569
Introduction

Easy heading

linkText4
linkText3
linkText10
linkText6
linkText5
relatedLinksLabels
linkText2
headingTags	H1,H2,H3
linkText1
sidebarMaxHeight	450
linkType2	Page
linkType3	Page
linkType1	Page
linkType10	Page
sidebarTitle	ON THIS PAGE
linkUrl3
linkUrl4
linkUrl1
linkUrl2
linkUrl10
includedPageMode	Disable_Included_Pages
linkText8
relatedLinksOrder	Labels_First
linkText7
sidebarMode	Opened
headingNumberingMode	Disable_Numbering
linkText9
sidebarMarginRight	20
relatedLinksTarget	New_Window
relatedLinksTitle	RELATED LINKS
linkUrl9
linkUrl7
linkUrl8
linkUrl5
numberedHeadingTags	H1,H2,H3
linkUrl6
linkType8	Page
linkType9	Page
headingLinkTextMode	Wrap
linkType6	Page
linkType7	Page
linkType4	Page
sidebarWidth	240
linkType5	Page
sidebarTop	160
headingLinkExpandMode	Collapse_All_By_Default
headingLinkIndent	10

Anchor
_Toc148340570
_Toc148340570
Product

...

Upon selecting the Windows dashboard, the top bar presents key information such as the number of reporting servers, endpoints, Domain Controllers, and Virtual Desktop Infrastructures (VDIs) – indicating the distribution of monitored assets. Additionally, the top bar showcases metrics regarding users validated through GYTPOL's Policy Validation module and the count of missing devices. Further explanation about these metrics can be found in the Customization and Settings > Health Screen section.

Image RemovedImage Added

Anchor
_Toc148340590
_Toc148340590
Drill downs

...

For every device listed, a further drill-down option is available. Activating this drill-down leads you to specific findings associated with that particular device. This in-depth exploration provides granular insights into the security and configuration status of the chosen device.

Image RemovedImage Added

Selecting any of the misconfiguration scopes, such as Servers or Endpoints, triggers the opening of the misconfiguration page, where all pertinent alerts relevant to that specific scope are presented. These alerts are systematically categorized according to the MITRE ATT&CK framework, enhancing their organization and clarity. Each alert possesses the capability to be further expanded, revealing the list of devices implicated in that misconfiguration.

...

For a comprehensive guide on navigating the Misconfigurations and Alerts section effectively, refer to the detailed instructions provided in the corresponding documentation.

Image RemovedImage RemovedImage AddedImage Added

Anchor
_Toc136853527
_Toc136853527
Anchor
_Toc148340591
_Toc148340591
Export

...

This CSV file will provide you with a structured record of the metrics related to Legacy Protocols, which you can then use for reporting or analysis purposes.

Image RemovedImage Added

Another example, is an export of a single finding:

...

The Knowledge Base empowers users with in-depth information, enabling them to tackle security challenges with informed solutions. Whether you access it through the top bar or directly within specific topics, the Know How feature is designed to enrich your experience within GYTPOL and enhance your ability to address security concerns.

Image RemovedImage Added

Anchor

	_Toc136853562
	_Toc136853562

...

Red (High): Represents high-severity misconfigurations that require immediate attention due to their critical impact on security.
Orange (Medium): Indicates medium-severity misconfigurations that should be addressed promptly to mitigate potential risks.
Yellow (Low): Denotes low-severity misconfigurations that may not pose an immediate threat but should still be resolved to enhance overall security posture.
Green (Complied): Signifies items that are in compliance and meet the expected security standards, resulting in no alerts generated.

...

In GYTPOL, alerts are visually differentiated by the presence of a spanner icon, which conveys specific information about the remediation process:

Green Spanner: Alerts accompanied by a green spanner icon indicate that you can swiftly remediate the finding using the GYTPOL user interface. This streamlined process enables you to fix the identified misconfiguration in a matter of seconds. For more detailed guidance on the remediation process, refer to the provided resources.
Gray Spanner: If an alert is associated with a gray spanner icon, it signifies that the finding cannot be remediated through the user interface due to certain limitations or conditions. These limitations could include factors such as unsupported PowerShell versions or informational nature of the alert. This may also indicate that the item fully complied with GYTPOL standards or was already fixed.

...

Anchor
_Toc136853551
_Toc136853551
Anchor
_Toc148340608
_Toc148340608
Spanner - Colors and Meaning

Color	Meaning
Image RemovedImage Added	Green – alert remediable and revertible
Image RemovedImage Added	Green with (!) – alert remediable but non-revertible
Image RemovedImage Added	Red – remediation failed (timeout, access)
Image RemovedImage Added	Orange – no error was reported during remediation, but the scanner found the same alert again
Image RemovedImage Added	Gray – action cannot be applied, either because the Powershell version is too old or there is no remediation action available for this finding
Image RemovedImage Added	Gray with a spinning icon – remediation is pending and ready to run on devices

...

Revert All: This option enables you to revert the remediation action on all devices within the defined scope. By selecting this option, the remediation changes will be undone on all applicable devices.
Revert on Selected Device(s): If you wish to revert the remediation action on specific devices within the scope, you can do so by clicking the "undo" icon for the respective device(s). This allows you to selectively revert changes on chosen devices.

Image RemovedImage Added

Anchor
_Toc148340620
_Toc148340620
Quick Wins

...

Accessible from the homepage, you can access the corresponding dashboard by selecting the relevant standard. Once clicked, the CIS or NIST dashboard will be displayed, presenting the benchmark results. Here's a breakdown of the color codes used:

Green: Indicates that the settings within your organization are compliant.
Red: Denotes that the settings within your organization are not compliant.
Orange: Indicates that the settings are not managed in your organization, and there is no detectable Group Policy Object (GPO) containing the relevant setting.

...

Devices that are missing from reporting are color-coded as follows:

Blue: Devices reported within the last 24 hours.
Yellow: Devices that have not reported in the last 3 days.
Orange: Devices that have not reported in the last week.
Red: Devices that have not reported in 7-14 days.

...

Versions Compared

Old Version 2

New Version 3

Key

Anchor_Toc148340569_Toc148340569Introduction
Anchor
_Toc148340569
_Toc148340569
Introduction

Anchor
_Toc148340570
_Toc148340570
Product

Anchor
_Toc148340590
_Toc148340590
Drill downs

Anchor
_Toc136853527
_Toc136853527
Anchor
_Toc148340591
_Toc148340591
Export

Anchor
_Toc136853551
_Toc136853551
Anchor
_Toc148340608
_Toc148340608
Spanner - Colors and Meaning

Anchor
_Toc148340620
_Toc148340620
Quick Wins

Page Comparison

Versions Compared

Old Version 2

New Version 3

Key

<span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-0">[data-colorid=</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-0">f4ty9nexns</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-1">]{color:</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-2">f4ty9nexns</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-3">]{color:</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-6">gcctloaxmq</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-7">]{color:</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-8">gcctloaxmq</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-9">]{color:</span>

Anchor_Toc148340569_Toc148340569Introduction<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-34">] [data-colorid=lg3s35j0m5]{color:#3fafff}</span> Anchor_Toc148340569_Toc148340569Introduction

Anchor_Toc148340570_Toc148340570Product

Anchor_Toc148340590_Toc148340590Drill downs

Anchor_Toc136853527_Toc136853527 Anchor_Toc148340591_Toc148340591Export

Anchor_Toc136853551_Toc136853551 Anchor_Toc148340608_Toc148340608Spanner - Colors and Meaning

Anchor_Toc148340620_Toc148340620Quick Wins

Anchor_Toc148340569_Toc148340569Introduction
Anchor
_Toc148340569
_Toc148340569
Introduction

Anchor
_Toc148340570
_Toc148340570
Product

Anchor
_Toc148340590
_Toc148340590
Drill downs

Anchor
_Toc136853527
_Toc136853527
Anchor
_Toc148340591
_Toc148340591
Export

Anchor
_Toc136853551
_Toc136853551
Anchor
_Toc148340608
_Toc148340608
Spanner - Colors and Meaning

Anchor
_Toc148340620
_Toc148340620
Quick Wins