AppLocker Guidance
Application whitelisting is one of Information Assurance top 10 mitigation strategies. This project contains scripts and configuration files for aiding administrators in implementing Microsoft AppLocker as outlined in the Application Whitelisting using Microsoft AppLocker paper. This repository provides a starter policy for Windows 7 and Windows 10, and a Group Policy Object (GPO) for Windows 10 can be found in the AppLocker folder in the Windows Secure Host Baseline repository. Guidance NSA Information Assurance has a security guide for AppLocker called Application Whitelisting Using Microsoft AppLocker.
FEATURES
ALTERNATIVES
Toolkit for building custom minimal, immutable Linux distributions with secure defaults.
CrowdStrike Falcon Insight XDR is an AI-powered endpoint detection and response solution that provides comprehensive protection, visibility, and automated response capabilities.
A software tool that enhances visibility and control over application activities on a user's computer, helping to identify and prevent potential security threats.
A free, open-source tool that uncovers persistently installed software on macOS, helping to generically reveal malware.
A comprehensive utility that shows what programs are configured to run during system bootup or login, and when you start various built-in Windows applications.
YARA-Endpoint is a client-server architecture tool that can be used for endpoint protection and incident response.
A modern tool for Windows kernel exploration and observability with a focus on security.
Advanced malware scanning and removal tool that detects and removes various types of malware and offers additional protection with HitmanPro.Alert.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.