WinHardenMoment

WinHardTitle
GeminiDashboard
GIF
CyberGuyPunkGuy

Inspiration

We wanted to make Windows security reports easier for normal users and beginner sysadmins to understand. CIS-CAT can generate detailed vulnerability reports, but the raw HTML output can be overwhelming. WinHardenMoment uses Gemini to summarize the most important findings and present them in a cleaner custom dashboard.

What it does

WinHardenMoment is based off of the CIS-CAT assessment tool that audits a PC to detect vulnerabilities that is specific to your computer. After the user has already ran this tool on their Windows 10 machine, we then use its report generated to take it from HTML to JSON so that Gemini can parse through this data and include the most major vulnerabilities into a summarized and customized JSON file. Once we receive this final formatted .JSON, we then ingest it into our pre-made WebUI to give it a new view rather than dozens of HTML pages with the original report.

How we built it

We built this in 4 different parts. First part is the dependency downloads for our main Web UI and Scripts. Second is our automation for your downloaded CIS-CAT tool with correct piping. Third is our prompt generation for Gemini to provide recommendations based on your assessment. Finally, our fourth is the ingest of the Gemini output into our Web Dashboard.

Challenges we ran into

Getting the correct file paths between scripts, Gemini API integration with our limited tokens, and the wrapper scripts cohesively working.

Accomplishments that we're proud of

Our main accomplishment is the tying together of all the pieces for automation for all the wrapper scripts.

What we learned

We built upon our file path integration knowledge, created our first node.js web UI, and integrating Gemini into our project was the first for most of us.

What's next for WinHardenMoment

To further improve our project, the next step for easing the process of WinHardenMoment was to tie this to be fully operated through a WebUI instead of just a final dashboard. We actually had a "start screen" created to implement, but we fell behind with our scripts. We also had an idea for adding Linux functionality and to branch to Windows 11 instead of just Windows 10.

Built With

bat
gemini
html
node.js
powershell
python

Submitted to

HackHCC: Code Runners

Created by

I handled Dependency Installation, Gemini Integration, and the Launcher script.

Sergio Yazdi
I created the ingest from Gemini prompt output to the Web UI. This includes the WebUI itself and its powershell automation scripting.

Ian Hoell
I focused on eliminating manual analyst interaction from the CIS-CAT compliance assessment process by building a PowerShell and Python automation chain. This included automating CIS-CAT Lite execution through CLI and interactive menu handling, dynamically locating assessment artifacts across Windows environments.

Douglas McGrew

Updates

Ian Hoell started this project — May 23, 2026 03:13 AM EDT

Leave feedback in the comments!

Log in or sign up for Devpost to join the conversation.