Advanced Plus Security Sirius777's Security Configuration 2021

Last updated
Sep 12, 2021
How it's used?
For home and private use
Operating system
Windows 10
On-device encryption
Log-in security
Security updates
Allow security updates and latest features
User Access Control
Always notify
Smart App Control
Network firewall
Real-time security
Windows 10 built-in security
Firewall security
Microsoft Defender Firewall
About custom security
  • Simple Windows Hardening
  • Configure Defender > HIGH
  • Controlled folder access (ransomware protection)
  • Enabled Core isolation > Memory integrity
  • Firewall Hardening > LOLBins + Recommended H_C
  • Enabled block at first sight via Local Group Policy Editor
  • Enabled network protection
  • Disabled Windows Script Host
  • Microsoft Defender > sandbox
Periodic malware scanners
Microsoft Defender Offline Scan
Kaspersky Virus Removal Tool
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Browsers:
  • Microsoft Edge
  • Google Chrome
  • Brave
  • Firefox
Extensions:
  • uBlock Origin > Advanced user, Prevent WebRTC from leaking local IP addresses, Block CSP reports, Disable JavaScript, Block remote fonts, blocked 3rd party frames, blocked 3rd-party (hard mode), and custom rules.
  • Facebook Container (Firefox only)
Chrome, Edge, and Brave flags:
  • #strict-origin-isolation
Microsoft Edge additional settings:
  • Microsoft Defender SmartScreen
  • Block potentially unwanted apps
  • Tracking protection > balanced
  • Secure DNS > Cloudflare DNS
Google Chrome additional settings:
  • Enhanced protection
  • Secure DNS > Google Public DNS
Brave additional settings:
  • Secure DNS > Google DNS
  • Clear browsing data on exit
Firefox additional settings:
  • Tracking protection > strict
  • Secure DNS > Cloudflare DNS
Custom exploit protection settings for browsers:
  • Block low integrity images - ON
  • Block remote images - ON
  • Block untrusted fonts - ON
  • Code integrity guard - ON (Also allow loading of images signed by Microsoft Store) ----> only for Microsoft Edge
  • Control flow guard (CFG) - ON
  • Data execution prevention (DEP) - ON + Enable trunk emulation
  • Disable extension points - ON
  • Force randomization for images (Mandatory ASLR) - ON + Do not allow stripped images
  • Randomize memory allocations (Bottom-up ASLR) - ON + Don't use high entropy
  • Validate exception chains (SEHOP) - ON
  • Validate handle usage - ON
  • Validate heap integrity - ON
  • Validate image dependency integrity - ON
Secure DNS
Google, Cloudflare, and NextDNS (changes per browser).
Desktop VPN
Windscribe
Password manager
KeePass and KeePassXC
Maintenance tools
  • Samsung Magician
  • Storage Sense
File and Photo backup
  • External hard drive (copy and paste)
  • AOMEI Backupper Pro
  • Google Drive
  • Mega
System recovery
AOMEI Backupper Pro
Risk factors
    • Working from home
    • Browsing to popular websites
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Sharing and receiving files and torrents
    • Streaming audio/video content from trusted sites or paid subscriptions
Computer specs
Device: ASUS A455L
CPU: Intel Core i5-5200U (2.7GHz)
GPU: GeForce 930m
RAM: 8GB
Storage: 250GB SAMSUNG 860 EVO SSD
What I'm looking for?

Not looking for any feedback.

You must log in or register to reply here.

You may also like...