rc-abodkins
commented
1 year ago This leverages the key hash which is not yet supported in Surveyor. Support for that needs to be included in Surveyor before this PR can be merged.
Open pmichaudrc opened 2 years ago
rc-abodkins
commented
1 year ago This leverages the key hash which is not yet supported in Surveyor. Support for that needs to be included in Surveyor before this PR can be merged.
Based off of Microsoft's recommended driver block list for WDAC https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-driver-block-rules