OK.Yes, but I would like to broaden the discussion since Umbra mentioned it.
Your final conclusion is wrong, because it is based on unsupported assumptions.Final conclusion.
In my PC, even in case of compromise of the OS (absurd hypothesis) Mimikatz could not act.
- MBAE + OSA can be a good replacement for Windows Updates.
- OSA can stop obfuscated command lines and all LOLBins.
- OSA can stop all implementations of Mimikatz (it cannot).
But, you are right that the Mimikatz attack via scripting methods would be hardly probable in the wild in the home environment, when .NET Framework is not installed and Windows Script Host scripting is blocked. Of course if the system is compromised, then the legal Python interpreter can be downloaded and Pypykatz can be run to do the same as Mimikatz.