jflyoo/Disable-LLMNR.bat

## Disable-LLMNR.bat
REM Link-Local Multicast Name Resolution is a Windows service that leaves the OS open to DNS spoofing from machines on the local network
reg add "hklm\software\policies\microsoft\windows nt\dnsclient"
reg add "hklm\software\policies\microsoft\windows nt\dnsclient" /v EnableMulticast /t REG_DWORD /d "0" /f

## Disable-RABasedDNSConfig.ps1
#Source adapted from: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-16898
#This mitigation could be applied in lieu of October 2020 Microsoft Updates, however, per source guidance, every effort should be made to install the update ASAP.

(Get-NetAdapter).ifindex | foreach {
    Write-Host "Current state: RA Based DNS Config on interface $_ :"
    netsh int ipv6 show int $_ | sls "RA Based DNS"
    Write-host "`nDisabling RA Based DNS Config on interface $_"
    netsh int ipv6 set int $_ rabaseddnsconfig=disable
    }
	REM Link-Local Multicast Name Resolution is a Windows service that leaves the OS open to DNS spoofing from machines on the local network
	reg add "hklm\software\policies\microsoft\windows nt\dnsclient"
	reg add "hklm\software\policies\microsoft\windows nt\dnsclient" /v EnableMulticast /t REG_DWORD /d "0" /f
	#Source adapted from: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-16898
	#This mitigation could be applied in lieu of October 2020 Microsoft Updates, however, per source guidance, every effort should be made to install the update ASAP.

	(Get-NetAdapter).ifindex \| foreach {
	Write-Host "Current state: RA Based DNS Config on interface $_ :"
	netsh int ipv6 show int $_ \| sls "RA Based DNS"
	Write-host "`nDisabling RA Based DNS Config on interface $_"
	netsh int ipv6 set int $_ rabaseddnsconfig=disable
	}