Andy Ful
From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
- Dec 23, 2014
- 8,765
WindowsHybridHardening Light (WHHLight)
(post updated in January 2025)
WHHLight ver. 2.0.0.1
https://github.com/AndyFul/Hard_Con...dowsHybridHardening/WHHLight_Package_2001.exe
WHHLight ver. 1.1.1.1
https://github.com/AndyFul/Hard_Con...dowsHybridHardening/WHHLight_Package_1111.exe
WHHLight webpage:
https://github.com/AndyFul/Hard_Configurator/tree/master/WindowsHybridHardening
Windows Hybrid Hardening Light (WHHLight) is a simplified configurator of (Windows built-in) application control features. It works on Windows 10 and 11 to support antivirus and prevent malware. WHHLight is a hybrid of Windows built-in security layers: SmartScreen, Install App Control, Software Restriction Policies (SRP), and Windows Defender Application Control (WDAC). After the initial configuration, WHHLight can be closed, and all protection comes from the Windows built-in features. It works well with any antivirus.
There is no need to use Microsoft Defender, but it can be recommended with ConfigureDefender settings.
WHHLight is adjusted to the home environment. SRP is still the best Windows built-in solution at home to prevent attack vectors via scripts, shortcuts, and other files with active content. WDAC is the best prevention against malicious EXE, DLL, and MSI files.
Some important post-exploitation mitigations of vulnerable applications (MS Office, Adobe Acrobat Reader, etc.) can be configured via DocumentsAntiExploit, FirewallHardening, and ConfigureDefender (tools included in the WHHLight installation package). The ConfigureDefender tool can be used only when Microsoft Defender real-time protection is enabled.
WARNING!
WHHLight is an advanced tool for home Administrators. Please read the help info about available options to avoid overkill setup.
Recommended Applications (work well with highly restricted WHHLight setups).
Some desktop applications can be troublesome when using WHHLight in the SUPER_SAFE or TWO_ACCOUNTS setup. This problem can be solved by using automated installations/updates such as Ninite, UniGetUI, or Microsoft Store (GET delivery method):
https://malwaretips.com/threads/whh...-for-windows-home-and-pro.128274/post-1095580
https://malwaretips.com/threads/whh...-for-windows-home-and-pro.128274/post-1096262
https://malwaretips.com/threads/app...l-with-smart-app-control.131260/post-1096404/
(post updated in January 2025)
WHHLight ver. 2.0.0.1
https://github.com/AndyFul/Hard_Con...dowsHybridHardening/WHHLight_Package_2001.exe
WHHLight ver. 1.1.1.1
https://github.com/AndyFul/Hard_Con...dowsHybridHardening/WHHLight_Package_1111.exe
WHHLight webpage:
https://github.com/AndyFul/Hard_Configurator/tree/master/WindowsHybridHardening
Windows Hybrid Hardening Light (WHHLight) is a simplified configurator of (Windows built-in) application control features. It works on Windows 10 and 11 to support antivirus and prevent malware. WHHLight is a hybrid of Windows built-in security layers: SmartScreen, Install App Control, Software Restriction Policies (SRP), and Windows Defender Application Control (WDAC). After the initial configuration, WHHLight can be closed, and all protection comes from the Windows built-in features. It works well with any antivirus.
There is no need to use Microsoft Defender, but it can be recommended with ConfigureDefender settings.
WHHLight is adjusted to the home environment. SRP is still the best Windows built-in solution at home to prevent attack vectors via scripts, shortcuts, and other files with active content. WDAC is the best prevention against malicious EXE, DLL, and MSI files.
Some important post-exploitation mitigations of vulnerable applications (MS Office, Adobe Acrobat Reader, etc.) can be configured via DocumentsAntiExploit, FirewallHardening, and ConfigureDefender (tools included in the WHHLight installation package). The ConfigureDefender tool can be used only when Microsoft Defender real-time protection is enabled.
WARNING!
WHHLight is an advanced tool for home Administrators. Please read the help info about available options to avoid overkill setup.
Recommended Applications (work well with highly restricted WHHLight setups).
Some desktop applications can be troublesome when using WHHLight in the SUPER_SAFE or TWO_ACCOUNTS setup. This problem can be solved by using automated installations/updates such as Ninite, UniGetUI, or Microsoft Store (GET delivery method):
https://malwaretips.com/threads/whh...-for-windows-home-and-pro.128274/post-1095580
https://malwaretips.com/threads/whh...-for-windows-home-and-pro.128274/post-1096262
https://malwaretips.com/threads/app...l-with-smart-app-control.131260/post-1096404/
Last edited: