This simple (free) tool can also help you check your Windows environment(s) for some really basic (mis)configuration / patch / vulnerability management (compliance) issues and help you harden your system(s), i.e. to improve your security posture a bit.
Although it was discontinued around the start of 2015, it could still be very useful when it comes to legacy systems (foremost).
A downside is the fact that it scans for Microsoft products and updates only - meaning there's still a lot of attack surface left uncovered.
It's so self-explanatory and easy to use that I won't even bother explaining how to use it - instead I'll only include a couple of screenshots.