by r3oubt
hardApple v0.1
Implements light version of configs from NIST SP-800-179 and NCSC EUD 10.12, 10.13
Consider looking at NCSC provisioning script (10.12) for account setup and disk encryption
Or the NIST scripts for macOS 10.10 (Yosemite) for ideas
Run the quickAudit script first to check SIP status and get info on stuff you might want to turn off
Boot to recovery, from terminal run "csrutil disable && reboot"
After running script make sure you reboot to recovery and run "csrutil enable && reboot"
Remember to "chmod" to make executable, then run with "sudo ./"