Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Personal, Enterprise, Government and Military security levels | Read The Rationale https://github.com/HotCakeX/Harden-Windows-Security/blob/main/Rationale.md
Implemented JSON schema as extra validation for the user configurations.
The New-KernelModeWDACConfig cmdlet no longer needs to clear the Code Integrity Operational event logs to create a strict kernel-mode policy for BYOVD protection, it can now intelligently detect kernel-mode drivers that ran after the audit mode policy was deployed on the system. Its documentation has also been updated.
Bumped the required PowerShell version to 7.4.1, a bunch of WDAC related issues were fixed in this version.
What's Changed
New-KernelModeWDACConfigcmdlet no longer needs to clear the Code Integrity Operational event logs to create a strict kernel-mode policy for BYOVD protection, it can now intelligently detect kernel-mode drivers that ran after the audit mode policy was deployed on the system. Its documentation has also been updated.