notabot

Level 15
WDAC offers nearly complete control of what can run in the system, which dlls can load, which .net assemblies can load


However it lacks a decent UI and easy of configuration for non enterprise users.

There are numerous anti-exe products but these don't place restrictions on dlls or .net assemblies.
Is there a commercial product that offers WDAC's functionality but with better administration UI ?
 
F

ForgottenSeer 823865

However it lacks a decent UI and easy of configuration for non enterprise users.
Because it not supposed to be for Home users, reason all is done via Powershell.
Also don't confuse WDAC with Applocker. WDAC chain of trust start at hardware to kernel level.
however Applocker complement WDAC

There are numerous anti-exe products but these don't place restrictions on dlls or .net assemblies.
Anti-exe is the weakest mechanism possible so obviously it won't reach the efficiency of SRPs (AppGuard, Applocker) and BB/HIPS (which unlike anti-exe) blocks dlls and drivers on top of executables.
the only anti-exe i know that can do that is NVT Smart Object Blocker or the Excubits' thingies.

But if you are looking for a 3rd party product acting exactly like WDAC's chain of trust, you won't find one.
 
Last edited by a moderator:

ichito

Level 9
Verified
Content Creator
SpyShelter could be some interresting thing for your needs...its full featured version - Firewall - is paid but curently we have new free version that can you test and even use daily
 
Top