Turn on Mandatory ASLR in Windows Security
I've been using it for quite a while now, it caused no problems or errors with any legitimate programs, games, anti cheat systems etc other than with some "custom" made portable programs. it's Off by default, when you turn it on, you will have to restart your device. Address space layout randomization Address space layout randomization (ASLR) is a computer security technique involved in preventing exploitation of memory corruption vulnerabilities. In order to prevent an attacker from reliably jumping to, for example, a particular exploited function in memory, ASLR randomly arranges the address space positions of key data areas of a process, including the base of the executable and the positions of the stack, heap and libraries. The Linux PaX project first coined the term "ASLR", and published the first design and implementation of ASLR in July 2001 as a patch for the Linux kernel. It is seen as a complete implementation, providing also a patch for kernel stack randomization since October 2002.[1] The first mainstream operating system to support ASLR by default was the OpenBSD version 3.4 in 2003,[2][3] followed by Linux in 2005. https://en.wikipedia.org/wiki/Address_space_layout_randomization https://blogs.technet.microsoft.com/srd/2017/11/21/clarifying-the-behavior-of-mandatory-aslr/ Other options that are tuned off by default and you should enable to make your Windows device more secure With the increasing number of threats in cyber security and new ransomwares, If you are only relying on Windows 10's built in security and not using any 3rd party AV such as Kaspersky, you must enable these features to keep yourself secure. Hope everyone stay safe!
Windows Defender Application Guard inside Windows Security App
Windows Defender Application Guard is designed to prevent attacks on local machines and from expanding malicious activity throughout a corporate network. If you are interested in learning more about Application Guard and how to install it in standalone mode, please see our previous blog. In the upcoming Windows release (Build 17691+), we have built an interface to configure Windows Defender Application Guard inside the Windows Security app. This allows users to configure Application Guard or check the administrator’s configuration of Application Guard at the same place as other Windows security features. The four settings that can be configured for Application Guard in the Windows Security app are: Save data Copy and paste Print files Advanced graphics Standalone users with devices that meet the minimum requirements will see Application Guard in the Browser & apps control section in Windows Security. From there, users can invoke the installation of this feature and configure its settings. When devices fall below the minimum spec, users will be alerted of this in the configuration page for Application Guard. Managed users can see how their administrators have configured their settings to have a better understanding of how they can operate between an Application Guard container and their host system. Here’s how users can configure or check their Application Guard status: Install and configure Go to the Windows Security app and select “App & browser control.” Select “Install Windows Defender Application Guard” under Isolated Browsing. Check the “Windows Defender Application Guard” box and Install from the Turn Windows features on or off screen and click OK. Restart your device. Return to the Windows Security app and select “App & browser control.” Select “Change Application Guard settings” to configure the settings. View managed Application Guard settings Go to the Windows Security app and select “App & browser control.” Select “Change Application Guard settings” to view the settings. Review the configurations set by your administrator. We encourage Windows Insiders to use the Windows Security app to configure and view Application Guard settings. Your feedback, suggestions, and telemetry will help us to improve Application Guard’s user experience. Feedback Hub link: Launch Windows Feedback for Microsoft Edge\Application Guard
Is there a way to PERMANENTLY disable Windows Defender withOUT installing a third party AV?
Even when real time scanning is off, Windows Defender consumes about third of 1GB of RAM. This coupled with other "essential (bloatware) like Edgewebview2 which Microsoft proponents argue it's an essential service but many of us don't need or use these "essential" services especially when they are infested with adware like Widgets can really slow down a PC.
Microsoft Account Troubleshooter: not updated since Oct. 2013
Hi! I downloaded today (2020-07-14) the tool ( https://social.technet.microsoft.com/wiki/contents/articles/13976.how-to-troubleshoot-microsoft-account-issues.aspx ) and opened it with 7-zip. The files there are from Oct. 2013. It means that the tool might not know about changes to account authentication. Therefore, it may report wrong conclusions/detections. I may be wrong but it seems to me that the tool needs some updating.Windows security malware removal problem
Windows version: Windows 11 Insider Preview 25276.1000 (rs_prerelease) Security version: Security Intelligence Update for Microsoft Defender Antivirus - KB2267602 (Version 1.381.2181.0) Windows security detected malware (VirTool:Win32/DefenderTamperingRestore) on my device; I pressed the delete button, but it failed and kept showing the alarm and an "x" on the Windows security icon. The video that shows the bug https://1drv.ms/v/s!AjBLY6cOGwhTlLtAcqdrV7zkkuuEpA?e=lkdKVS
Turn on Memory Integrity through Microsoft Intune
Hi, Question: How to turn on the following setting through Microsoft Intune? Windows Security > Device Security > Core isolation > Memory Integrity (It says: Memory integrity is off. Your device may be vulnerable.) Applied licenses: Microsoft Intune Suite + Microsoft Defender for Endpoint P2 Client OS: Windows 11 It has been weeks since I already applied the following through the Security Baseline Policy for Windows 10 and Later but still the Memory Integrity has not got enabled on any client: Device Guard Credential Guard: (Enabled with UEFI lock): Turns on Credential Guard with UEFI lock. Enable Virtualization Based Security: enable virtualization based security. Require Platform Security Features: Turns on VBS with Secure Boot and direct memory access (DMA). ------ Virtualization Based Technology Hypervisor Enforced Code Integrity: (Enabled with UEFI lock) Turns on Hypervisor-Protected Code Integrity with UEFI lock. The Windows Baseline Security has got applied successfully on all endpoints without any errors or conflicts. Intune Sync and device restart have been performed 100s of times but in vain. Any suggestions would be highly appreciated.
Windows 11 Dynamic Lock Unstable
Dynamic Lock in Windows 11 is unstable. Even when phone is connected to PC via Bluetooth, Dynamic Lock says it can't detect your phone. This screenshot shows: my phone is connected but dynamic lock shows not detected. Sometimes it works if I press the Scan for Phone option manually. But its not intended to work like that.
