Back to course

Securing Your Host OS (Windows/macOS)

Cyber Security Mastery: From Zero to Hero

The First Line of Defense

Before you start practicing offensive security, your primary operating system (Windows or macOS) must be secure. It is the foundation upon which your lab rests.

Essential Host OS Hardening

  1. Operating System Updates: Ensure your OS is fully patched. Unpatched systems are the most common entry points for malware.
  2. Strong Passwords and MFA: Use long, complex passwords and enable Multi-Factor Authentication (MFA) on all critical accounts.
  3. Firewall: Ensure the built-in firewall is active and configured to block unsolicited incoming connections.
  4. Antivirus/EDR: Keep Windows Defender or a commercial EDR solution active and updated.
  5. Principle of Least Privilege: Do not run as an administrator/root user for daily tasks. Use a standard user account and elevate permissions only when absolutely necessary (using sudo on macOS, or UAC on Windows).
  6. Secure Browsing: Install ad-blockers, use private browsing modes when appropriate, and avoid suspicious links.