ClientHardening
Client hardening is the practice of reducing the attack surface of client devices such as desktops, laptops, and mobile endpoints by configuring operating systems, applications, and user environments to minimize exploitable weaknesses. The aim is to prevent exploitation, restrict malware execution, and improve resilience against intrusions. It focuses on the client-side layer of an organization’s security architecture and complements network and server hardening.
Key elements include removing or disabling unnecessary services and features, enforcing least privilege and strong authentication,
Standards and implementation approaches commonly used in client hardening include CIS Benchmarks, NIST guidance, and DISA