Report Microsoft Vulnerabilities Requiring Out of Band Missing Registry Key

To report on MSFT vulnerabilities related to a missing registry key(s) that are typically post-patch and out-of-band, we can simply follow these steps:

  1. Create dynamic asset group to filter all OS’ containing Microsoft.
  2. Create a Security Console report template for CSV.
  3. Add the vulnerability proof section and any other desired section to report template.
  4. Create a new export report using created report template and filter for asset group created in step 1. Add vulnerability filters and choose validated vulnerabilities with only Microsoft categories included.
  5. Run and export report.
  6. In Excel, add filters for headings and filter ‘vulnerability proof’ column for: contains ‘key is missing’

I found this helpful, and I hope you do too :blush::v: