ConfigureDefender utility for Windows 10/11

R

rashmi

Level 15
Jan 15, 2024
733
Andy Ful said:
I did not notice that Microsoft Defender received updates solely through Windows Updates. :unsure:
Most frequent updates are received via MAPS independently of Windows Updates:
learn.microsoft.com

Microsoft Defender Antivirus security intelligence and product updates - Microsoft Defender for Endpoint

Manage how Microsoft Defender Antivirus receives protection and product updates.
learn.microsoft.com

In addition to MAPS, Defender updates are also received via Windows Updates:
  • Security Intelligence Update (KB2267602)
  • Antivirus antimalware platform (KB4052623)
  • Malicious Software Removal Tool x64 (KB890830)
Click to expand...
Does Defender function properly or fully if you disable Windows Update?

With Configure Defender set to "high" and "block executables" enabled, would you recommend any of your tools for managed average users?
 
  • Like
Reactions: simmerskool
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,777
rashmi said:
Does Defender function properly or fully if you disable Windows Update?
Click to expand...

I do not know (no one tested this).

rashmi said:
With Configure Defender set to "high" and "block executables" enabled, would you recommend any of your tools for managed average users?
Click to expand...

I do not recommend my tools to average users. But, they can be used by "home administrators" to protect the computers of average users. The 'home administrator" must decide which tools should be used. More tools = more security = more work for the "home administrator".
The minimum setup balanced both for security and usability would be as follows:
Microsoft Defender with ConfigureDefender HIGH Protection Level + FirewallHardening (H_C Recommended blockList) + Edge web browser (SmartScreen + PUA) + SmartScreen for Explorer.

Such a setup could be probably OK also for many MT members. If the average user ignores SmartScreen, it should be set to Block in ConfigureDefender.
 
  • Like
  • +Reputation
  • Thanks
Reactions: rashmi, oldschool, Gandalf_The_Grey and 3 others
sypqys

sypqys

Level 6
Apr 18, 2022
257
Andy Ful said:
I do not know (no one tested this).



I do not recommend my tools to average users. But, they can be used by "home administrators" to protect the computers of average users. The 'home administrator" must decide which tools should be used. More tools = more security = more work for the "home administrator".
The minimum setup balanced both for security and usability would be as follows:
Microsoft Defender with ConfigureDefender HIGH Protection Level + FirewallHardening (H_C Recommended blockList) + Edge web browser (SmartScreen + PUA) + SmartScreen for Explorer.

Such a setup could be probably OK also for many MT members. If the average user ignores SmartScreen, it should be set to Block in ConfigureDefender.
Click to expand...
When you said SmartScreen for Explorer, it put on Block or User ?
 
sypqys

sypqys

Level 6
Apr 18, 2022
257
ConfigureDefender_x64_KUdBQ46OXq.png


why Controlled Folder Access on Disabled with high recommendations ?
 
R

rashmi

Level 15
Jan 15, 2024
733
Andy Ful said:
I do not know (no one tested this).



I do not recommend my tools to average users. But, they can be used by "home administrators" to protect the computers of average users. The 'home administrator" must decide which tools should be used. More tools = more security = more work for the "home administrator".
The minimum setup balanced both for security and usability would be as follows:
Microsoft Defender with ConfigureDefender HIGH Protection Level + FirewallHardening (H_C Recommended blockList) + Edge web browser (SmartScreen + PUA) + SmartScreen for Explorer.

Such a setup could be probably OK also for many MT members. If the average user ignores SmartScreen, it should be set to Block in ConfigureDefender.
Click to expand...
I'm currently testing CD and exploring Firewall Hardening. I downloaded the Firewall Hardening package, which includes Firewall Hardening and additional tools. Can I delete the extra tools and rename the folder as Firewall Hardening? Are you suggesting that I enable only H_C Recommended BlockList in Firewall Hardening for a balanced level of protection? The screenshots in the first post showcase the configuration for "child protection" in Configure Defender. Have you removed it?
 
  • Like
Reactions: simmerskool, oldschool and Gandalf_The_Grey
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,777
rashmi said:
I'm currently testing CD and exploring Firewall Hardening. I downloaded the Firewall Hardening package, which includes Firewall Hardening and additional tools. Can I delete the extra tools and rename the folder as Firewall Hardening?
Click to expand...
Yes.

rashmi said:
Are you suggesting that I enable only H_C Recommended BlockList in Firewall Hardening for a balanced level of protection?
Click to expand...

Yes.

rashmi said:
The screenshots in the first post showcase the configuration for "child protection" in Configure Defender. Have you removed it?
Click to expand...

The screenshots are not related to any predefined setup. When protecting children the recommended starting setup is MAX Protection Level with some modifications if necessary.
 
  • Like
  • +Reputation
  • Thanks
Reactions: simmerskool, oldschool, rashmi and 1 other person
R

rashmi

Level 15
Jan 15, 2024
733
@Andy Ful Do you receive Configure Defender and Firewall Hardening alerts for blocked events? How effective is Smart Screen's whitelist or whatever it has? Is Firewall Hardening (H_C Recommended BlockList) safe or trouble-free? Any suggestions for it?
 
  • Like
Reactions: simmerskool
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,777
rashmi said:
@Andy Ful Do you receive Configure Defender and Firewall Hardening alerts for blocked events?
Click to expand...

Very rarely and can be ignored.

rashmi said:
How effective is Smart Screen's whitelist or whatever it has?
Click to expand...

SmartScreen for Explorer is enabled by default on Windows. So, you can see by yourself how many alerts were/are triggered on your computer. The SmartScreen whitelist is managed only by Microsoft.

rashmi said:
Is Firewall Hardening (H_C Recommended BlockList) safe or trouble-free? Any suggestions for it?
Click to expand...

Mostly yes. You can look at the <Blocked Events> to see how it works on your computer.
Please, post about FirewallHardening in the dedicated thread:
malwaretips.com

FirewallHardening tool

FIREWALLHARDENING (new ver. 3.0.0.1, July 2024) FirewallHardening is a part of the Hard_Configurator project and can be used also as a standalone application among a few others included in the H_C_HardeningTools repository...
malwaretips.com malwaretips.com
 
Last edited:
  • Like
  • +Reputation
  • Thanks
Reactions: rashmi, simmerskool and Gandalf_The_Grey
R

rashmi

Level 15
Jan 15, 2024
733
@Andy Ful Is it okay if I combine "Configure Defender" and "Firewall Hardening" in one folder, renaming it to "Hard Configurator" or "Andy Ful tools"? Microsoft Copilot states that Defender relies solely on Windows Update for its security intelligence and product updates.
 
  • Like
Reactions: simmerskool
ErzCrz

ErzCrz

Level 23
Verified
Top Poster
Well-known
Aug 19, 2019
1,291
With me running CyberLock, I;m looking at using ConfigureDefender but where's a suggested place to run it from? I know running H_C along with CL is potential overkill but I also like that it's installed and CD and FWH accessible through it's UI but maybe running both is possible hmm.
 
  • Like
Reactions: simmerskool
oldschool

oldschool

Level 85
Verified
Top Poster
Well-known
Mar 29, 2018
7,852
ErzCrz said:
CD and FWH accessible through it's UI but maybe running both is possible hmm.
Click to expand...
You can copy those executables anywhere you like, pin them to Start, Taskbar, etc. You can delete the rest of the HC folder's contents if you're not planning on using them. Users can also download CD and FWH executables separately from @Andy Ful's GitHub page.
 
  • Like
  • Thanks
Reactions: simmerskool, ErzCrz and Andy Ful
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,777
ErzCrz said:
With me running CyberLock, I;m looking at using ConfigureDefender but where's a suggested place to run it from? I know running H_C along with CL is potential overkill but I also like that it's installed and CD and FWH accessible through it's UI but maybe running both is possible hmm.
Click to expand...
I do not use/test CyberLock so I do not know if applying ConfigureDefender and FirewallHardening would be OK.
Anyway, Those tools have portable versions:
malwaretips.com

FirewallHardening tool

FIREWALLHARDENING (new ver. 3.0.0.1, July 2024) FirewallHardening is a part of the Hard_Configurator project and can be used also as a standalone application among a few others included in the H_C_HardeningTools repository...
malwaretips.com malwaretips.com
 
  • +Reputation
  • Like
  • Thanks
Reactions: simmerskool, oldschool and ErzCrz
ErzCrz

ErzCrz

Level 23
Verified
Top Poster
Well-known
Aug 19, 2019
1,291
Andy Ful said:
I do not use/test CyberLock so I do not know if applying ConfigureDefender and FirewallHardening would be OK.
Anyway, Those tools have portable versions:
malwaretips.com

FirewallHardening tool

FIREWALLHARDENING (new ver. 3.0.0.1, July 2024) FirewallHardening is a part of the Hard_Configurator project and can be used also as a standalone application among a few others included in the H_C_HardeningTools repository...
malwaretips.com malwaretips.com
Click to expand...
oldschool said:
You can copy those executables anywhere you like, pin them to Start, Taskbar, etc. You can delete the rest of the HC folder's contents if you're not planning on using them. Users can also download CD and FWH executables separately from @Andy Ful's GitHub page.
Click to expand...

Thanks both. Just testing them out as a possible option.
 
  • Like
Reactions: simmerskool, Andy Ful and oldschool
1chaoticadult

1chaoticadult

Level 2
Verified
Jul 29, 2013
54
ErzCrz said:
Good to know! CL does show a cmd alert when opening CD but easy enough to allow. FWH rules can be overridden by WFC which I'm also using though debating if WFC is needed with WFH and CL set to create block rules for unsafe files.
Click to expand...
FH rules cannot be seen by WFC FYI. The FH rules override WFC rules. Andy Ful has stated this before.
 
Last edited:
  • Like
  • Thanks
Reactions: Andy Ful and ErzCrz

Similar threads

Andy Ful
    • Like
    • +Reputation
    • Thanks
  • Sticky
Serious Discussion WHHLight - simplified application control for Windows Home and Pro.
Replies
351
Views
45,127
Hard_Configurator Tools
Andy Ful
Andy Ful
Gandalf_The_Grey
    • Like
    • Applause
New Update 10 cool features Windows 11 received in 2024
Replies
1
Views
359
Windows 11
Jonny Quest
Jonny Quest
Andy Ful
    • +Reputation
    • Like
    • Applause
New Update Testing Windows Hybrid Hardening (new hardening application).
Replies
253
Views
34,124
Hard_Configurator Tools
South Park
South Park

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top