ConfigureDefender utility for Windows 10/11

F

ForgottenSeer 823865

Just saying, malware testing shouldn't be done in any virtual system. You will never get fully legit result because of various factors like malware recognizing the environment and acting differently, etc...
Buy a cheap computer, or test on another system drive.
 
  • Like
Reactions: Venustus, Protomartyr, Rengar and 3 others
SeriousHoax

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,862
Andy Ful said:
This issue with ShadowDefender should be solved by leaving the ShadowMode, setting WD with ConfigureDefender, checking/correcting the settings in WD Security Center, restarting the computer, and entering the ShadowMode again.(y)
Click to expand...
This seems quite a hassle. I'll see what I can do.
 
Last edited:
  • Like
Reactions: Venustus
SeriousHoax

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,862
Umbra said:
Just saying, malware testing shouldn't be done in any virtual system. You will never get fully legit result because of various factors like malware recognizing the environment and acting differently, etc...
Click to expand...
This is true but most of the samples tested in the hub here are not environment aware so this is not a huge issue. The hub tests give user a basic idea of how effective a product might be against relatively new samples. For absolute professional grade testing there are other sources out there.
 
  • Like
Reactions: Venustus, Andy Ful, Protomartyr and 2 others
oldschool

oldschool

Level 84
Verified
Top Poster
Well-known
Mar 29, 2018
7,595
Last edited:
  • Like
Reactions: SeriousHoax, Andy Ful, Venustus and 4 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,482
  • Like
Reactions: Venustus, Protomartyr, oldschool and 4 others
F

ForgottenSeer 823865

I'm amazed by MS duality... they dismiss the issue saying it need admin rights but at same time when everyone install Windows, the default account is the admin one...and few will know or even create SUA.
99% of the windows users I know, just use Admin account for daily use and the few who use SUA is because they setup it for family members, not for security purposes...
 
  • Like
Reactions: Aggravatorx, Andy Ful, harlan4096 and 2 others
ErzCrz

ErzCrz

Level 22
Verified
Top Poster
Well-known
Aug 19, 2019
1,157
I always get more paranoid about security this time of year. Currently running H_C on Recommended settings with ConfigureDefender set to High Protection Level and H_C recommended FirewallHardening rules only enabled (should I be using the others as well?). I'm thinking of maybe moving ConfigureDefender up to Max Settings but is that necessary? Any advice if I do swap over to Max?

Thanks,

Erz
 
Last edited:
  • Like
Reactions: Protomartyr, oldschool and Venustus
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,482
ErzCrz said:
I always get more paranoid about security this time of year. Currently running H_C on Recommended settings with ConfigureDefender set to High Protection Level and H_C recommended FirewallHardening rules only enabled (should I be using the others as well?). I'm thinking of maybe moving ConfigureDefender up to Max Settings but is that necessary? Any advice if I do swap over to Max?

Thanks,

Erz
Click to expand...
You have already very strong and restrictive protection. Please, try to live with it for a couple of weeks to see if it is not too restrictive for you. Look from time to time at H_C, ConfigureDefender, and FirewallHardening Logs to see if something was blocked. Some software updates may be blocked with this default-deny setup.
After that, you can think about changing ConfigureDefender or FirewallHardening settings, or add some H_C advanced settings. But, this is not recommended, except when you use not updated Windows or vulnerable/unpatched software.
Please let me know if you will encounter problems with default-deny setup.
 
  • Like
  • +Reputation
Reactions: Gandalf_The_Grey, harlan4096, Protomartyr and 2 others
ErzCrz

ErzCrz

Level 22
Verified
Top Poster
Well-known
Aug 19, 2019
1,157
Andy Ful said:
You have already very strong and restrictive protection. Please, try to live with it for a couple of weeks to see if it is not too restrictive for you. Look from time to time at H_C, ConfigureDefender, and FirewallHardening Logs to see if something was blocked. Some software updates may be blocked with this default-deny setup.
After that, you can think about changing ConfigureDefender or FirewallHardening settings, or add some H_C advanced settings. But, this is not recommended, except when you use not updated Windows or vulnerable/unpatched software.
Please let me know if you will encounter problems with default-deny setup.
Click to expand...

Thanks @Andy Ful :D I think I just needed reassurance what I'm currently using is sufficient to protect me. I've had it for a number of weeks and so far no issues with anything being blocked.

Cheers,

Erz
 
  • Like
Reactions: Gandalf_The_Grey, Protomartyr, Andy Ful and 1 other person
oldschool

oldschool

Level 84
Verified
Top Poster
Well-known
Mar 29, 2018
7,595
  • Like
Reactions: ErzCrz, Gandalf_The_Grey, harlan4096 and 3 others
B

Bryan320

Level 8
Oct 11, 2019
293
please excuse me if im missing it on the configure utility but anyway to have windows defender check for updates more then the default selected? anyway for the application to check for updates every 1 hours? I'm currently using F secure but set windows defender up on family computers with the utility. just wondering if I can set WD up to updates it's signatures more.
 
  • Like
Reactions: Andy Ful, Protomartyr, harlan4096 and 2 others
oldschool

oldschool

Level 84
Verified
Top Poster
Well-known
Mar 29, 2018
7,595
Bryan320 said:
please excuse me if im missing it on the configure utility but anyway to have windows defender check for updates more then the default selected? anyway for the application to check for updates every 1 hours? I'm currently using F secure but set windows defender up on family computers with the utility. just wondering if I can set WD up to updates it's signatures more.
Click to expand...
You can via powershell > Set MpPreference but you don't really need to. WD's main protection comes from cloud lookup, which is more up to date than local sigs. I wouldn't bother.

If you insist, then look here Set-MpPreference
 
Last edited:
  • Like
  • +Reputation
Reactions: South Park, woodrowbone, Andy Ful and 5 others

Similar threads

Andy Ful
    • Like
    • +Reputation
    • Thanks
  • Sticky
Serious Discussion WHHLight - simplified application control for Windows Home and Pro.
Replies
318
Views
34,090
Hard_Configurator Tools
Andy Ful
Andy Ful
Andy Ful
    • +Reputation
    • Like
    • Applause
New Update Testing Windows Hybrid Hardening (new hardening application).
Replies
253
Views
29,414
Hard_Configurator Tools
South Park
South Park
Shadowra
    • Like
    • +Reputation
    • Thanks
App Review Microsoft Defender Antivirus + Windows 11 Smart App Control (SAC)
Replies
44
Views
3,224
Video Reviews - Security and Privacy
tofargone
tofargone

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top