Does anyone know about a write-up detailing how to implement the CIS Critical Security controls with no budget utilizing readily available or free/opensource tools.
SANS.org has one written in 2011. I am looking for something more recent hopefully with updated tools as some of the tools referenced are no longer usable.
I found this video by John Strand to be very helpful. New Security Team Bootcamp: https://www.youtube.com/watch?v=qFsf_kAXnM0
The video mentions the free Critical Security Controls resources at www.AuditScripts.com. The master mapping tool is awesome!
Really good material here thanks. The tool is truly useful.
I know this is an old thread, but in case someone need more information about implementing these controls with free/commercial tool, take look at this great post by Alienvault