All Tools
Live
Endpoint Security Assessment
10 questions about your antivirus, MFA, encryption, and device policies. Get a Pass/Warn/Fail grade and know exactly where you're exposed.
๐ฅ๏ธ
What this assessment covers
โ Antivirus & EDR deployment coverage
โ Multi-factor authentication enforcement
โ Disk encryption (BitLocker / FileVault)
โ Screen lock, admin rights, USB policies
โ Mobile device management & remote wipe
~2 minutes ยท 10 questions ยท No account required
Question 1 of 10 ยท Antivirus & EDR
Do all company computers and laptops have antivirus or endpoint protection software installed?
This includes tools like Windows Defender, CrowdStrike, SentinelOne, Malwarebytes, or similar. "Some" counts as partial.
Question 2 of 10 ยท Antivirus & EDR
Is your antivirus software kept up to date automatically?
Outdated definitions are nearly as dangerous as no AV. Automatic updates are the minimum standard.
Question 3 of 10 ยท Multi-Factor Authentication
Is MFA required to access company email and cloud applications?
Email is the #1 attack vector. MFA on email (M365, Gmail) alone blocks over 99% of automated account takeovers.
Question 4 of 10 ยท Multi-Factor Authentication
What MFA method does your organization use?
SMS codes are better than nothing but vulnerable to SIM swapping. Authenticator apps and hardware keys are significantly stronger.
Question 5 of 10 ยท Encryption at Rest
Are company laptops and computers protected with full-disk encryption?
BitLocker (Windows) and FileVault (Mac) ensure a stolen laptop can't be read even without the password. Required by most compliance frameworks.
Question 6 of 10 ยท Device Policies
Do company devices automatically lock after a period of inactivity?
An unlocked computer left unattended for seconds is enough time for a USB drop attack. 5-minute auto-lock is the standard minimum.
Question 7 of 10 ยท Device Policies
Do employees use accounts with administrator rights for their daily work?
Admin rights let malware install itself silently. Standard accounts can't do this. Least-privilege is a core defense against ransomware.
Question 8 of 10 ยท Device Policies
Does your organization have a policy about USB drives and removable media?
USB drives are a common malware delivery method. A policy (even just training) dramatically reduces this risk.
Question 9 of 10 ยท Mobile & Remote Work
Can your organization remotely wipe a lost or stolen device?
Mobile Device Management (MDM) tools like Intune, Jamf, or Google Workspace MDM enable remote wipe. Without it, a lost laptop means a data breach.
Question 10 of 10 ยท Mobile & Remote Work
Do employees access company email or data from personal (BYOD) devices?
Personal devices are outside your control. If employees use personal phones or laptops for work without a BYOD policy, that is an unmanaged attack surface.
Your findings
Get these results emailed + endpoint hardening tips
We will compile your results and send a plain-English summary with next steps.
โ Your summary is on the way. Check your inbox.