Advanced Plus Security Windows Security updated setup

[Sunshine-boy]

Don't copy this settings. Make your own! It will not work good.
You can copy only this:
C:\Users\*>*explorer.exe
C:\Users\*>*dllhost.exe
C:\Users\*>*rundll32.exe
C:\Users\*>*taskhost.exe
C:\Users\*>*dwm.exe

I know that lol
but i wanted to know about these lines
[LETHAL]
[#LOGGING]
[WHITELIST]
[DEFAULTALLOW]

 

[Windows_Security]

Updated MemProtect.ini file (1.4 KB)

[LETHAL]
[#LOGGING]
[WHITELIST]
[DEFAULTALLOW]
# Allow caged programs program access to own folder
!*\Chromium\*>C:\Program Files\Chromium\*
!*\Microsoft Office\*>C:\Program Files\Microsoft Office\*
!*\Windows Media Player\*>C:\Program Files\Windows Media Player\*

# Allow caged programs to start printing and browsing
!C:\Program Files\*>*splwow64.exe
!C:\Program Files\*>*chrome.exe

[BLACKLIST]
# Block access to explorer from user folders
!C:\Users\*>*explorer.exe
!D:\*>*explorer.exe
!E:\*>*explorer.exe

# Block caged programs (injecting)starting (into)all other executables
*\Chromium\*>*
*\Microsoft Office\*>*
*\Windows Media Player\*>*
[EOF]

Updated SecureFolders (Trusted applications explorer.exe and syncbackfree.exe)

 

[TheMalwareMaster]

OS file reputation is OFF.
Shouldn't this config considered risky?

 

[Deletedmessiah]

OS file reputation is OFF.
Shouldn't this config considered risky?

He's using Windows 7 where Smartscreen is not available.

 

[TheMalwareMaster]

He's using Windows 7 where Smartscreen is not available.

Didn't notice that. Thanks

 

[Handsome Recluse]

What happened to the Shade Sandbox ABP$third-party Firefox, Adguard Spyware/own filter lists Chromium, anti-ransomware programs, Avast Hardened Mode/VoodooShield anti-executable techniques?

 

[Windows_Security]

They are on 'try out & play' images stored on backup NAS. To busy with business until December. When all goes as planned, have meeting 11 December with Florian of Excubits to combine MemProtect and Pumpernickel into preset zero configuration packages (e.g. Firefox sandbox, Office exploit mitigation).

 

[Deleted member 178]

to combine MemProtect and Pumpernickel into preset zero configuration packages (e.g. Firefox sandbox, Office exploit mitigation).

That will be interesting

 

[Windows_Security]

That will be interesting

Well, there are still quite a few Firefox fans and people happy with Office 2007.

Office container would block exploits to affect or infect other programs and write protect windows and program files (except own Office installation folder).

Firefox sandbox would be similar except it would only have read rights to user folders with write access to Firefox appdata and download folder.

Feel free to post suggestions.

 

[Emanuel.]

Can you do a tutorial on your settings? Thanks a lot. Best regards.

 

[Glashouse]

Also having bouncer within this combination would be great...