
Free Security Checklist
Internal Network Security Assessment Checklist
A practical cybersecurity checklist designed to help organizations assess risks, improve compliance, and strengthen security controls.
✓ Included in this Checklist
What's Inside?
An internal network security assessment evaluates the defense-in-depth posture of an organization assuming an attacker has already bypassed perimeter security. This checklist guides you through auditing internal infrastructure, active directory configurations, and network segmentation.
Key Internal Security Areas:
Key Focus Areas
Network Segmentation: Validate VLAN boundaries and verify that internal traffic is restricted between zones.
Active Directory Security: Check for weak passwords, stale accounts, and excessive administrator permissions.
Kerberos Exploits: Validate protection against Kerberoasting, AS-REP Roasting, and Golden/Silver ticket attacks.
SMB & Protocol Security: Disable SMBv1, enforce SMB Signing, and review network share access rights.
Local Administrator Password Solution (LAPS): Ensure distinct admin passwords across all domain workstations.
Network Access Control (NAC): Verify that unauthorized devices cannot connect to the physical network.
Internal Service Vulnerabilities: Scan internal servers for unpatched vulnerabilities and end-of-life OS platforms.
Wi-Fi Network Auditing: Audit wireless security protocols (WPA3/WPA2-Enterprise) and rogue access points.
LLMNR & NBT-NS Disabling: Prevent LLMNR/NBT-NS spoofing and relay attacks inside the local network.
Log Aggregation & SIEM: Verify that domain controller, database, and critical server logs flow to a SIEM.
Endpoint Detection & Response (EDR): Verify agent deployment and evasion prevention on all endpoints.
Backup Isolation: Check if offline or immutable backups exist and are insulated from domain compromise.
Designed for Network Admins, Internal Security Auditors, and System Administrators managing corporate infrastructure.
Expert Security Guidance
Need Help Strengthening Your
Security Posture?
Explore our expert-designed cybersecurity checklists or connect with our team for personalized guidance tailored to your organization's needs.
Expert Reviewed
ISO & Compliance Ready
Actionable Checklists