[BUG REPORT] Helper-less mode on Windows has issues

[franklyonnet]

Bug report

Impacted system

• EDAMAME Security App

Please remove the irrelevant categories.

Expected vs actual behavior

Actual:

• Windows update disabled threat active when it should not be
• Manual remediation on Cached logon not effective (command or instructions ?)
• NTLMv1 not effective (command or instructions ?)

Steps to reproduce

Versions

Screenshots (if relevant)

Additional information

[PierreLamusse]

Concerning the Manual remediation on Cached logon and NTLMv1, it seems that the command have not been run with admin privilege. Even though one of the instruction of the threat remediation screen is to open a shell with admin privilege, this might not be clear enough for the user. This highlights a need to improve the UX of threat remediation.

For the "Windows update disabled threat active when it should not be", I suspect that this is the same issue, but could we have more information on their process ? I can't reproduce on my device.