Proposal
Based on Microsoft's recommended list of applications to block via WDAC, a definitions file should be created to search an environment for execution. By baselining with this definition file, an org can determine which applications may be impacted if they were to be blocked or which applications could be easily blocked.
Which category is the feature part of?
Use Cases
Proposal Based on Microsoft's recommended list of applications to block via WDAC, a definitions file should be created to search an environment for execution. By baselining with this definition file, an org can determine which applications may be impacted if they were to be blocked or which applications could be easily blocked.
Additional context https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules