WDAC Wednesday: Manual software installs
Andrew Happy WDAC Wednesday! As we’ve covered previously Application Control for Business (ACFB) is a very powerful and effective solution for combating malware within your environment. ACFB achieves this by using…
WDAC Wednesday: Plan to fail, the importance of rollback testing
Happy WDAC Wednesday! Application Control for Business (ACFB) is a very powerful solution that enhances security by greatly reducing the risk of malware being able to infect an organisation, however…
WDAC Wednesday: Application Control and the Essential Eight
Happy WDAC Wednesday! As we’ve covered previously in the series Application Control for Business (ACFB) is highly effective at blocking malware as part of a defense in depth security strategy.…
WDAC Wednesday: AppLocker vs Application Control for Business
Happy WDAC Wednesday! In the first two posts we covered the benefits provided by Application Control for Business (ACFB) enhances malware prevention beyond AV/EDR solutions, and outlined a high-level implementation…
WDAC Wedesday: Audit mode advantage
Happy WDAC Wednesday! Application control solutions are very powerful, they are like a gate keeper, and determine what installed applications are allowed to run. Applying tighter controls on endpoints, using…
WDAC Wedesday: Why anti-virus and EDR isn’t enough
Happy WDAC Wednesday! Welcome to a new series with the aim of detailing and demistifying Microsoft’s Application Control for Business (ACFB), a powerful solution used to allow or block applications…
January 2024 WDAC Advanced Hunting changes
Microsoft today published an update advisory for Windows Defender Application Control (WDAC) Advanced Hunting changes that could have an impact if you have any hunting rules or dashboards in place.…
Creating a policy with the WDAC Wizard
The goal of this post is to step through the process of using the WDAC Wizard to create a sample WDAC policy and deploy it to a test Windows 10…
Application control with Microsoft WDAC
This blog post will be the first (of many) in a series relating to Microsoft WDAC and how to understand, implement and manage it. In the current cyber security landscape…
WDAC feature limitations on Windows Server versions
Windows Defender Application Control (WDAC) is a core component of Windows, since Windows 10 and Server 2016, which can be used as part of your security posture to secure workstations…