DefenderUI by VoodooShield - Turn on Hidden Security Features of Microsoft Defender
- Thread starter danb
- Start date
- May 31, 2017
- 1,689
Getting close… DefenderUI Pro / WDAC Lockdown should be ready by the weekend for sure, assuming we do not think of a cool new feature to add 
. We figured out a way to prompt the user on a WDAC block, and it is almost ready, just working out the kinks.
Here is a screenshot of what we have so far.
Just for the fun of it, I created an Ai video about WDAC Lockdown. It took all of 5 minutes to write the prompt. There are actually parts of the video that are really good, but there are parts that are super bad. The dialog they created was quite good, but some of the stock video footage was silly.
ai.invideo.io
. We figured out a way to prompt the user on a WDAC block, and it is almost ready, just working out the kinks.Here is a screenshot of what we have so far.
Just for the fun of it, I created an Ai video about WDAC Lockdown. It took all of 5 minutes to write the prompt. There are actually parts of the video that are really good, but there are parts that are super bad. The dialog they created was quite good, but some of the stock video footage was silly.
Turn ideas into videos | AI video creator | invideo AI
Make videos easily by giving a prompt to invideo AI. Ideal for content creators, YouTubers and marketers, invideo AI offers a seamless way to turn your ideas into publish-ready videos with AI.
Last edited:
- May 31, 2017
- 1,689
Sure, that would be super easy to add, but I think it would drive people nuts
. I have been working with end users for 20+ years, and I know what they like and what they do not like .
- May 31, 2017
- 1,689
Hey Guys,
Here is the initial beta of DefenderUI Pro. If anyone is running CyberLock and wants to try this beta, you can always uninstall CyberLock, and just choose to not remove the settings and logs, then uninstall DefenderUI Pro later and reinstall CyberLock. I am curious to see if anyone thinks we should add the WDAC Lockdown feature to CyberLock. It really is not necessary, but it would not hurt to add WDAC Lockdown to CyberLock.
I am still not a huge fan of WDAC, but a lot of people swear by it, so I figured we would make a user-friendly, automated version of it. A good kernel mode driver like the one DefenderUI Pro and CyberLock uses is much more flexible, and allows developers to do tons of things they could never do with WDAC.
The WDAC Lockdown factory default policies were generated from the Microsoft WDAC Wizard are stored here: C:\Program Files\DefenderUI\Policies. Then there are also user customizable policies that are stored here: C:\ProgramData\DefenderUI\Policies. If any of the factory default policies are modified, then the user customizable policies are automatically deployed. But if there are not user customizable policies, then the factory default policies are deployed.
The WDAC Lockdown feature also includes a modified version of the Microsoft WDAC Wizard, and this modified version makes it super simple to create and modify policies for WDAC Lockdown.
If you do use the WDAC Lockdown feature, it would be best to start in Training mode for a day or so. There are only four folders that are automatically whitelisted by the factory default policies.
C:\Program Files\
C:\Program Files (x86)\
C:\WindowsApps\
C:\XboxGames\
We could have whitelisted other folders as well, but as you are aware, that can be dangerous. Besides, with the new WDAC Lockdown usability features, anything that needs to be whitelisted is automatically whitelisted, and that way we do not have to whitelist entire potentially dangerous directories. We might end up tweaking the factory policies a little, but it is probably best to stick with the policies that are recommended by Microsoft.
There are probably a few things that we need to tweak or fix, so if you guys find anything please let me know!
DefenderUIPro 1.18
SHA-256: 7dc488692ccafcca67777a5d72be2b4d6c5eb75f607fe1127200c65622fe198c
Have a great weekend!
Dan
Here is the initial beta of DefenderUI Pro. If anyone is running CyberLock and wants to try this beta, you can always uninstall CyberLock, and just choose to not remove the settings and logs, then uninstall DefenderUI Pro later and reinstall CyberLock. I am curious to see if anyone thinks we should add the WDAC Lockdown feature to CyberLock. It really is not necessary, but it would not hurt to add WDAC Lockdown to CyberLock.
I am still not a huge fan of WDAC, but a lot of people swear by it, so I figured we would make a user-friendly, automated version of it. A good kernel mode driver like the one DefenderUI Pro and CyberLock uses is much more flexible, and allows developers to do tons of things they could never do with WDAC.
The WDAC Lockdown factory default policies were generated from the Microsoft WDAC Wizard are stored here: C:\Program Files\DefenderUI\Policies. Then there are also user customizable policies that are stored here: C:\ProgramData\DefenderUI\Policies. If any of the factory default policies are modified, then the user customizable policies are automatically deployed. But if there are not user customizable policies, then the factory default policies are deployed.
The WDAC Lockdown feature also includes a modified version of the Microsoft WDAC Wizard, and this modified version makes it super simple to create and modify policies for WDAC Lockdown.
If you do use the WDAC Lockdown feature, it would be best to start in Training mode for a day or so. There are only four folders that are automatically whitelisted by the factory default policies.
C:\Program Files\
C:\Program Files (x86)\
C:\WindowsApps\
C:\XboxGames\
We could have whitelisted other folders as well, but as you are aware, that can be dangerous. Besides, with the new WDAC Lockdown usability features, anything that needs to be whitelisted is automatically whitelisted, and that way we do not have to whitelist entire potentially dangerous directories. We might end up tweaking the factory policies a little, but it is probably best to stick with the policies that are recommended by Microsoft.
There are probably a few things that we need to tweak or fix, so if you guys find anything please let me know!
DefenderUIPro 1.18
SHA-256: 7dc488692ccafcca67777a5d72be2b4d6c5eb75f607fe1127200c65622fe198c
Have a great weekend!
Dan
Similar threads
