diff --git a/guidance/windows/Browsers.md b/guidance/windows/Browsers.md
index f27d953..7afc935 100644
--- a/guidance/windows/Browsers.md
+++ b/guidance/windows/Browsers.md
@@ -97,6 +97,6 @@ A custom Nessus audit file is available for scanning browsers on Windows operati
* If Edge exists, then that the Edge patched is installed. - partially implemented
* If Firefox is installed, then that Firefox 57.0.4 or newer is installed.
* If Firefox ESR is installed, then that Firefox 52.6 or newer is installed.
-* If Opera is installed, then that Opera 50.0.2762.67 or newer is installed. - not implemented yet
+* If Opera is installed, then that Opera 50.0.2762.67 or newer is installed.
**The Nessus audit file for browers on Windows is still a work in progress**.
\ No newline at end of file
diff --git a/verification/README.md b/verification/README.md
index 646f2fe..b950944 100644
--- a/verification/README.md
+++ b/verification/README.md
@@ -36,7 +36,7 @@ The audit file performs the following checks:
* If Edge exists, then that the Edge patched is installed. - partially implemented
* If Firefox is installed, then that Firefox 57.0.4 or newer is installed.
* If Firefox ESR is installed, then that Firefox 52.6 or newer is installed.
-* If Opera is installed, then that Opera 50.0.2762.67 or newer is installed. - not implemented yet
+* If Opera is installed, then that Opera 50.0.2762.67 or newer is installed.
**The Nessus audit file for browers on Windows is still a work in progress**.
diff --git a/verification/windows/Verify-Spectre-Meltdown-Mitigations-Windows-Browsers.audit b/verification/windows/Verify-Spectre-Meltdown-Mitigations-Windows-Browsers.audit
index 1043497..5cab9e4 100644
--- a/verification/windows/Verify-Spectre-Meltdown-Mitigations-Windows-Browsers.audit
+++ b/verification/windows/Verify-Spectre-Meltdown-Mitigations-Windows-Browsers.audit
@@ -117,7 +117,7 @@
value_type: POLICY_TEXT
value_data: "HKLM\Software\Policies\Google\Chrome"
key_item: "SitePerProcess"
- reg_option: MUST_EXIST
+ reg_option: MUST_EXIST
type: REGISTRY_SETTING
@@ -253,7 +253,8 @@
-
+ # this item on its own will false positive in the case where Firefox ESR has been installed, uninstalled, and where Firefox (RR or ESR) is not installed on the system
+ # this is due to FireFox ESR not deleting its registry keys and values on uninstall (Firefox RR does delete its registry keys on uninstall)
type: AUDIT_POWERSHELL
description: "Detects if Firefox is updated."
@@ -307,5 +308,86 @@
+
+ # 5. if Opera is installed, then check if it is updated
+
+
+
+
+ type: FILE_CHECK
+ description: "Detects if Opera is installed at %ProgramFiles% (x86)"
+ info: "
+ Looks for:
+ %ProgramFiles% (x86)\Opera\launcher.exe
+ "
+ value_type: POLICY_TEXT
+ value_data: "%ProgramFiles% (x86)\Opera\launcher.exe"
+ file_option: MUST_EXIST
+
+
+ type: FILE_CHECK
+ description: "Detects if Opera is installed at %ProgramFiles%"
+ info: "
+ Looks for:
+ %ProgramFiles%\Opera\launcher.exe
+ "
+ value_type: POLICY_TEXT
+ value_data: "%ProgramFiles%\Opera\launcher.exe"
+ file_option: MUST_EXIST
+
+
+
+
+
+
+
+ type: FILE_VERSION
+ description: "Detects if Opera launcher in %ProgramFiles% is updated."
+ info: "
+ Detects if Opera launcher in %ProgramFiles% is updated.
+
+ Looks for %ProgramFiles%\Opera\launcher.exe version greater than or equal to 50.0.2762.67
+ "
+ value_type: POLICY_FILE_VERSION
+ value_data: "50.0.2762.67"
+ file_item: "%ProgramFiles%\Opera\launcher.exe"
+ file_option: MUST_EXIST
+
+
+ type: FILE_VERSION
+ description: "Detects if Opera launcher in %ProgramFiles% (x86) is updated."
+ info: "
+ Detects if Opera launcher in %ProgramFiles% (x86) is updated.
+
+ Looks for %ProgramFiles% (x86)\Opera\launcher.exe version greater than or equal to 50.0.2762.67
+ "
+ value_type: POLICY_FILE_VERSION
+ value_data: "50.0.2762.67"
+ file_item: "%ProgramFiles% (x86)\Opera\launcher.exe"
+ file_option: MUST_EXIST
+
+
+
+
+ description: "Opera browser is updated."
+ info: "Opera browser is updated to at least 50.0.2762.67 or later."
+
+
+
+
+ description: "Opera browser is not updated."
+ info: "Opera browser is not updated to at least 50.0.2762.67 or later."
+
+
+
+
+
+
+
+ description: "Opera browser is not installed"
+ info: "Opera browser is not installed"
+
+
+
\ No newline at end of file