Microsoft Windows includes an AutoRun feature, which can automatically run code when removable devices are connected to the computer. However the Autorun and NoDriveTypeAutorun registry values are both ineffective for fully disabling AutoRun capabilities. After setting the registry keys to disable these features, the AutoRun capabilities, the Double Click feature, and the Contextual Menu feature continue to function as if they were not set, which could be considered a vulnerability.
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center