Hardening Ms Office

CMLew · Dec 29, 2019

I happened to read this article from Australia Govt site (?) related to cybersecurity. And one of them is hardening Ms. Office.

Hardening Microsoft Office 365 ProPlus, Office 2019 and Office 2016 | Cyber.gov.au

Workstations are often targeted by adversaries using malicious websites, emails or removable media in an attempt to extract sensitive information. Hardening applications on workstations is an important part of reducing this risk.

www.cyber.gov.au

Wondered if anyone tried that?

oldschool · Dec 29, 2019

CMLew said:
I happened to read this article from Australia Govt site (?) related to cybersecurity. And one of them is hardening Ms. Office.

Hardening Microsoft Office 365 ProPlus, Office 2019 and Office 2016 | Cyber.gov.au

Workstations are often targeted by adversaries using malicious websites, emails or removable media in an attempt to extract sensitive information. Hardening applications on workstations is an important part of reducing this risk.

www.cyber.gov.au

Wondered if anyone tried that?

Simple solution: AndyFul/Hard_Configurator

codswollip · Dec 29, 2019

My approach is pretty basic... LibreOffice.

Lenny_Fox · Dec 30, 2019

When on Windows 10
1. Install ConfigureDefender and enable all Windows Defender ASR rules
2. Open TrustCenter in Office and disable
- use of macro's
- use of active X
- use of Add-ins
- set trusted folders to your Documents (and data partitions)
3. Add all Office executables to Windows Defender Exploit protection and enable Code Integrity Guard

Andy Ful · Dec 30, 2019

If you do not use H_C and ConfigureDefender, then you can tweak Office applications or use Windows Policies to:

Disable macros (Word, Excel, PowerPoint, Access, Publisher, Outlook).
Disable access to Visual Basic Object Model (Access, Excel, PowerPoint, Word).
Disable auto-update for any linked fields (including DDE and OLE in Word, Excel, Outlook, OneNote).
Disable ActiveX (Word, Excel, PowerPoint).
Disable OLE (Word, Excel, PowerPoint).
Disable ‘RunPrograms’ option for action buttons in PowerPoint.
Disable automatic download of linked images in PowerPoint.
Disable TrustBar notifications in (Word, Excel, PowerPoint).

All of this can be also done via Documents Anti-Exploit tool available on:

GitHub - AndyFul/Hard_Configurator: GUI to Manage Software Restriction Policies and harden Windows Home OS

GUI to Manage Software Restriction Policies and harden Windows Home OS - AndyFul/Hard_Configurator

github.com

This tool uses most of the policies included in the :

Hardening Microsoft Office 365 ProPlus, Office 2019 and Office 2016 | Cyber.gov.au

Workstations are often targeted by adversaries using malicious websites, emails or removable media in an attempt to extract sensitive information. Hardening applications on workstations is an important part of reducing this risk.

www.cyber.gov.au

Search

Hardening Ms Office

CMLew

Level 23

Hardening Microsoft Office 365 ProPlus, Office 2019 and Office 2016 | Cyber.gov.au

oldschool

Level 82

Hardening Microsoft Office 365 ProPlus, Office 2019 and Office 2016 | Cyber.gov.au

codswollip

Level 23

Lenny_Fox

Level 22

Andy Ful

From Hard_Configurator Tools

GitHub - AndyFul/Hard_Configurator: GUI to Manage Software Restriction Policies and harden Windows Home OS

Hardening Microsoft Office 365 ProPlus, Office 2019 and Office 2016 | Cyber.gov.au

Similar threads