This application discloses a method and device for automatically verifying security rules of a remote Windows operating system. The method includes: firstly, obtaining the type, system path, Windows path, and defense level of the operating system by remotely logging in to the Windows operating system, and then, according to the operation System type and defense level, obtain security rules, then, according to the system path, Windows path and security rules, obtain the security rule path, and then build a test file under this path, and obtain its permission value, and finally, use the permission value Compare with the actual protection result of the security rule path, verify whether the permission value complies with the security rule, and obtain the verification result. It can be seen that after the application has determined the security rules of the remote Windows operating system and its path, the authority value of the test file constructed under the path of the security rule is compared with the actual protection result of the path of the security rule to realize the remote Windows operating system. The automatic verification of security rules ensures the security of system information.