Serious Discussion WHHLight - simplified application control for Windows Home and Pro.

Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
9,045
Parkinsond said:
For robust AV such as K, only using script rules by AppLocker will be sufficient.
Click to expand...
It will be sufficient for MT members, but probably not for children or happy clickers. Furthermore, one cannot use Group Policies to configure AppLocker on Windows Home editions. Scripting protection in AppLocker includes only Windows Script Host (VBScript, JScript), PowerShell, and Batch scripts.
For more comprehensive protection, one can use Smart App Control or SWH settings in WHHLight.. For example, SWH settings can block shortcuts, and this can prevent most attacks via flash drives and many dangerous fileless attacks.
 
Last edited:
  • +Reputation
  • Applause
  • Like
Reactions: piquiteco, simmerskool, rashmi and 1 other person
Parkinsond

Parkinsond

Level 18
Dec 6, 2023
888
Andy Ful said:
It will be sufficient for MT members, but probably not for children or happy clickers. Furthermore, one cannot use Group Policies to configure AppLocker on Windows Home editions. Scripting protection in AppLocker includes only Windows Script Host (VBScript, JScript), PowerShell, and Batch scripts.
For more comprehensive protection, one can use Smart App Control or SWH settings in WHHLight. can block shortcuts, and this can prevent most attacks via flash drives and many dangerous fileless attacks.
Click to expand...
For me, WHHLight is much better than SAC; includes software restriction policy which encompass LNK (not covered by WDAC, may be by SAC when has MoTW) and can whitelist path (no available for SAC).
 
  • Like
Reactions: piquiteco and Andy Ful
dronefox1166

dronefox1166

Level 6
Apr 18, 2022
286
Andy Ful said:
WindowsHybridHardening Light (WHHLight)
(post updated in Jun 2025)

WHHLight ver. 2.0.0.3
https://github.com/AndyFul/Hard_Con...dowsHybridHardening/WHHLight_Package_2003.exe

WHHLight webpage:
https://github.com/AndyFul/Hard_Configurator/tree/master/WindowsHybridHardening

View attachment 280817

Windows Hybrid Hardening Light (WHHLight) is a simplified configurator of the Windows built-in application control features. It works on Windows 10 and 11 to support antivirus and prevent malware. WHHLight is a hybrid of Windows built-in security layers: SmartScreen, Install App Control, Software Restriction Policies (SRP), and Windows Defender Application Control (WDAC). After the initial configuration, WHHLight can be closed, and all protection comes from the Windows built-in features. It works well with any antivirus.
There is no need to use Microsoft Defender, but it can be recommended with ConfigureDefender settings.

WHHLight is adjusted to the home environment. SRP is still the best Windows built-in solution at home to prevent attack vectors via scripts, shortcuts, and other files with active content. WDAC is the best prevention against malicious EXE, DLL, and MSI files.

Some important post-exploitation mitigations of vulnerable applications (MS Office, Adobe Acrobat Reader, etc.) can be configured via DocumentsAntiExploit, FirewallHardening, and ConfigureDefender (tools included in the WHHLight installation package). The ConfigureDefender tool can be used only when Microsoft Defender real-time protection is enabled.

WARNING!
WHHLight is an advanced tool for home Administrators. Please read the help info about available options to avoid an overkill setup.


Recommended Applications (work well with highly restricted WHHLight setups).
Some desktop applications can be troublesome when using WHHLight in the SUPER_SAFE or TWO_ACCOUNTS setup. This problem can be solved by using automated installations/updates such as Ninite, UniGetUI, or Microsoft Store (GET delivery method):
https://malwaretips.com/threads/whh...-for-windows-home-and-pro.128274/post-1095580
https://malwaretips.com/threads/whh...-for-windows-home-and-pro.128274/post-1096262
https://malwaretips.com/threads/app...l-with-smart-app-control.131260/post-1096404/







Click to expand...

Why I have this version and not the last ?

explorer_Dule83enMF.png
 
  • Like
Reactions: piquiteco and rashmi
piquiteco

piquiteco

Level 16
Verified
Top Poster
Well-known
Oct 16, 2022
775
Parkinsond said:
It is an extended version of WHHLight.
Click to expand...
Wow, this version would be complete, it has 3 switches and drop menu for SmartScreen for Explorer to turn on and off. @Andy Ful is always innovating with his tools. It would certainly be a lot of work for him to finish this project as it is an extended version of WHHLight. All the tools Andy has developed are great, starting with H_C.
 
  • Like
Reactions: Parkinsond, Andy Ful, Morro and 1 other person
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
9,045
piquiteco said:
Wow, this version would be complete, it has 3 switches and drop menu for SmartScreen for Explorer to turn on and off. @Andy Ful is always innovating with his tools. It would certainly be a lot of work for him to finish this project as it is an extended version of WHHLight. All the tools Andy has developed are great, starting with H_C.
Click to expand...
Thanks.:)
My problem is as follows: Do people at home need something more complex than WHHLight?
 
Last edited:
  • Like
  • +Reputation
Reactions: simmerskool, Gandalf_The_Grey and Parkinsond

Similar threads

Andy Ful
    • +Reputation
    • Like
    • Applause
New Update Testing Windows Hybrid Hardening (new hardening application).
Replies
253
Views
42,161
Hard_Configurator Tools
South Park
South Park
Shadowra
    • Like
    • +Reputation
    • Applause
App Review Webroot SecureAnywhere 2024 (With WHHLight & Wihout WHHLight)
Replies
14
Views
2,241
Video Reviews - Security and Privacy
Shadowra
Shadowra
lokamoka820
    • Like
Serious Discussion Can WHHLight be used with other AVs, or it is related to Microsoft Defender?
Replies
10
Views
1,242
General Security Discussions
Andy Ful
Andy Ful

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top