Insufficient Hardening – Default IIS Webpage In Use

TCM-KB-EXT-002
Last Updated: 6/26/2023



Microsoft Windows Server

The recommended remediation steps and configurations described in this response would primarily affect systems running Microsoft Windows Server.



IIS

IIS refers to Internet Information Services.

IIS is a web server service created by Microsoft. It’s used to host websites, web applications, and services on the Windows platform. You can find this service on Microsoft Windows Server machines.

Contributor

Joe Helle

Chief Hacking Officer

This Knowledge Base Article was submitted by: Joe Helle.

Recent Blogs

AI Assisted Pentest Reporting

by Josh Daniels | Oct 22, 2025 | Artificial Intelligence, Penetration Testing

In this blog, we’ll show how to generate pentest finding templates with DeepSeek AI using MITRE’s Common Weakness Enumeration (CWE) categories.

AI-Automated Credential Stuffing

by Josh Daniels | Oct 15, 2025 | Artificial Intelligence, Penetration Testing

Credential stuffing remains one of the most efficient paths to account takeover, and AI assistance is changing the scale and effectiveness of those attacks.

OSINT Resources and Tools

by Josh Daniels | Oct 8, 2025 | Security

Explore some of the fundamental domains of OSINT research, plus a list of tools and resources to develop this discipline as a cyber security professional.

« Older Entries

Issue

The server presents users with a default IIS webpage. This typically occurs when server administrators serve a website on 443 without a port 80 to 443 redirect, or stand up a web server using default settings, and forget to disable the unused port(s). Unused ports serve the IIS default page by default.

Windows Server IIS

Recommended Remediation

The following outlines the recommended steps that the systems and network administrators should take in order to secure the environment.

Logging into the device with administrative privileges, access the Internet Information Services (IIS) Manager.

Internet Information Services IIS Manager

In the IIS management window, you may see one or more Connections listed on the left side of the page. Clicking the down arrow on the left side of the listing(s), select Sites.

IIS Management Window

In the center of the page, a listing of sites is presented. Right click the site to modify, and select Bindings.

IIS Site Management

In the Site Bindings window, click the host to disable, and select Remove. Click Yes when asked if you wish to remove the binding(s). Click Close.

Site Bindings IIS

One complete attempt to revisit the site in a browser to confirm its removal.

IIS Page Not Found

example title page of a pentesting report at TCM Security

See What We Can Do For You

Download a sample penetration test report to see the results we can deliver for your organization.

See How We Can Secure Your Assets

Let’s talk about how TCM Security can solve your cybersecurity needs. Give us a call, send us an e-mail, or fill out the contact form below to get started.