This is the ultimate configuration against many forms of hacking such as memory space access, malware, credential theft, denial of service attacks and rootkit deployments for all standard Windows & specific programs. The following apps are currently protected and guaranteed to start (click categories to show list):
Microsoft Services
- Literally all (!) basic Windows programs from boot. Beyond recommendations (took a few bluescreens >.<)
- OneDrive
- File Explorer
- Smartscreen
- Windows Settings
- Task Manager
- Windows Store
- search index
- SSH
- svchost
- smss
- csrss
- conhost
- dashost
- OOBEbroker
- WMI
- wininit
- winlogon
- WerFault
- lsalso & lsass
- and many more (everything on Windows 10 & 11)
Web Browsers
- Google Chrome (allowing extensions)
- Mozilla Firefox (fully functional with many protection settings)
- Internet Explorer (misclicks happen)
- Opera
- Safari
- Thorium
- Edge
- DuckDuckGo
- Brave
Media Tools
- Audacity
- butt audio streaming
- Virtual DJ
- Photoshop
- Groove Music
- Winamp
- foobar2000
- iTunes
- Windows Media Player
- NDIRecord
- StreamDeck
- Yamaha Steinberg USB
- vMix64
- BlackMagic Video
- VLC Media Player
Communication Apps
- Skype
- Lync
- Pidgin
- Telegram
- MS Outlook
- Thunderbird
- Windows Live Mail
- Google Talk
- Slack
- Armcord (a Discord client)
- Discord
Gaming
- Steam
- Ubisoft
- EA - Electronic Arts
- GOG Galaxy (edit version number in .XML file accordingly)
- EasyAntiCheat
- The Sims 4
- Cyberpunk 2077
- Firestorm viewer for Second Life
- Radegast
Networking
- dnscrypt-proxy
- Tor
- WARP 1.1.1.1
- OpenVPN
- WireGuard
- VPN Unlimited
Common Software
- Acrobat Reader PDF
- cmd terminal
- Foxit PDF Reader
- Java
- MS Access
- MS Excel
- MS PowerPoint
- MS Word
- MS Wordpad
- MS Notepad
- Notepad++
- Obsidian
- OneNote
- PowerShell
- PowerShell ISE
- Sumatra PDF
- Visio
- WinZip
- 7Z
- ...
Other Executables
- Adobe (services)
- AMD (GPU driver)
- Citrix Workspace App
- Edge Webview2 (works for Citrix Workspace, DuckDuckGo, Edge...)
- Everything
- HP (drivers)
- Intel (drivers)
- KeePassXC & proxy
- Open SSL
- NVIDIA
- Qbittorrent
- Qt Web Engine
- Real Converter
- RealPlay
- Realtek Audio
- SwitchDefaultDeny(x64)
- SyncThing
- Thunderbolt
- WinRAR
- ...
Check separate program settings when specific features don't work. 90% is tested & all run w/ zero configuration
Windows Settings > Security & Privacy > Windows Security > App & browser control > Exploit protection settings > Program settings
XploitProtection.xml + the extra security settings below are focused on Windows Home & Pro consumers, gamers & small businesses where agility is everything. Help update XploitProtection.xml with new entries and keep this list growing.
Run XPROT.ps1 to change WEPS quickly. Update every so often (this will not remove entries & gets the most recent online xml every time) & reboot to activate, also after manually importing with this command:
Set-ProcessMitigation -PolicyFilePath "$HOME\Downloads\XploitProtection.xml"
Some rare, specific installs require temporarily removing protection, this can be done with XPROT: reboot & install the software, update again or import any local XML. After restarting (again), these policies block intrusions like botnets & cache exploits
XPROT, Windows Exploit Protection Manager
This standalone GUI script brings dramatic improvements to the slow per-program interface that Windows offers endusers today - XPROT Manager excels in speed for bulk actions & repetitive implementations, thus running tighter security with no trouble: remove & import same settings again during new installations. Stay up to date with new software protection settings with only three clicks and a reboot. Protect now!
- Use DNS (f.e. 9.9.9.9, 1.1.1.1,...) with activated encryption via Windows network settings or a third party solution
- windows_hardening.cmd (includes anti mimikatz exploit regedit & more security!)
- https://github.com/AndyFul/ConfigureDefender (further hardening of Windows)
- https://github.com/Sycnex/Windows10Debloater (debloat Windows 10 & 11)
- https://www.thewindowsclub.com/ultimate-windows-tweaker-5-for-windows-11
- https://github.com/jdgregson/Exploit-Protection-Settings as to support Microsoft Office
- Added https://github.com/Strana-Mechty/ExploitProtection-Templates supporting Adobe, Telegram & more
- Calibrated with https://github.com/microsoft/ExploitProtectionConfiguration but all is set stricter
Star this repository to help others.
#WindowsHome #WindowsPro #Windows10 #Windows11 #Microsoft #WindowsExploitProtectionSettings #Hardening #Cybersecurity #ExploitProtection #Defender #WindowsDefender #Gaming #Mimikatz #Defense #Botnet #Antibotnet #Privacy #SVC #Vulnerabilities #Cyberdefense #Protection #Gaming #Stackpivot #CFG #SEHOP #ASLR #Heapcorruption #Safeboot #Redhat #Whitehat #Anonymous #Opensource #Interface #FrenzyPenguinMedia #Tool #ProtectionSettings #Manager #Security #Software #GUI #Productivity #CallerCheck #HandleUsage #Fonts #Images #dll #services #taskhost #svchost #PowerShell #TLS
© FrenzyPenguin Media