{"id":15021208,"url":"https://github.com/simeononsecurity/applocker-hardening","last_synced_at":"2025-10-27T17:30:17.807Z","repository":{"id":110917206,"uuid":"314182494","full_name":"simeononsecurity/Applocker-Hardening","owner":"simeononsecurity","description":"Ultimate Applocker Hardening Configuration Script.","archived":false,"fork":false,"pushed_at":"2024-07-26T23:05:48.000Z","size":47,"stargazers_count":25,"open_issues_count":0,"forks_count":1,"subscribers_count":3,"default_branch":"main","last_synced_at":"2024-10-11T13:01:58.262Z","etag":null,"topics":["applocker","applocker-rule","hardening","powershell","powershell-script","windows","windows-10"],"latest_commit_sha":null,"homepage":"https://simeononsecurity.com/github/Applocker-Hardening","language":"PowerShell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/simeononsecurity.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"github":["simeononsecurity"],"custom":["https://simeononsecurity.com","https://simeononsecurity.com/recommendhome","https://simeononsecurity.com/affiliate","https://twitter.com/simeonsecurity","https://discord.io/cybersentinels"]}},"created_at":"2020-11-19T08:26:33.000Z","updated_at":"2024-08-12T15:50:56.000Z","dependencies_parsed_at":"2024-07-27T00:23:20.520Z","dependency_job_id":"96b961aa-c945-4416-9c54-e4d81dced41b","html_url":"https://github.com/simeononsecurity/Applocker-Hardening","commit_stats":{"total_commits":18,"total_committers":1,"mean_commits":18.0,"dds":0.0,"last_synced_commit":"ff0dbfb32caf6a4d3931009b3964f2cb596d18d5"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simeononsecurity%2FApplocker-Hardening","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simeononsecurity%2FApplocker-Hardening/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simeononsecurity%2FApplocker-Hardening/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/simeononsecurity%2FApplocker-Hardening/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/simeononsecurity","download_url":"https://codeload.github.com/simeononsecurity/Applocker-Hardening/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":219860932,"owners_count":16556009,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["applocker","applocker-rule","hardening","powershell","powershell-script","windows","windows-10"],"created_at":"2024-09-24T19:56:17.726Z","updated_at":"2025-10-27T17:30:17.398Z","avatar_url":"https://github.com/simeononsecurity.png","language":"PowerShell","funding_links":["https://github.com/sponsors/simeononsecurity","https://simeononsecurity.com","https://simeononsecurity.com/recommendhome","https://simeononsecurity.com/affiliate","https://twitter.com/simeonsecurity","https://discord.io/cybersentinels"],"categories":[],"sub_categories":[],"readme":"# Applocker-Hardening\n\n [![Sponsor](https://img.shields.io/badge/Sponsor-Click%20Here-ff69b4)](https://github.com/sponsors/simeononsecurity) [![VirusTotal Scan](https://github.com/simeononsecurity/Applocker-Hardening/actions/workflows/virustotal.yml/badge.svg)](https://github.com/simeononsecurity/Applocker-Hardening/actions/workflows/virustotal.yml)\n\nThe following script is an automation process for installing AppLocker policies in a Windows environment using PowerShell. The script first sets the error handling preference to \"silently continue\" and elevates the privileges of the current process. It then sets the directory to the location of the script and installs the policies from the Files directory. The AppLocker service is then enabled and started, and the status of the service is checked. Finally, the active AppLocker rule categories are printed and the script tests the block rules for executables in the C:\\Windows\\System32 directory for the user \"Everyone\".\n\n## What does this script do?\n- Locks down system resources to bare minimum needed for basic OS functionality\n\n## Recommended reading:\n- [api0cradle/UltimateAppLockerByPassList)](https://github.com/api0cradle/UltimateAppLockerByPassList)\n- [Microsoft Recommended Block Rules](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules)\n- [MotiBa/AppLocker](https://github.com/MotiBa/AppLocker)\n- [NSA Cyber Bitlocker Guidance](https://github.com/nsacyber/AppLocker-Guidance)\n\n## How to run the script:\n### Manual Install:\nIf manually downloaded, the script must be launched from an administrative powershell in the directory containing all the files from the [GitHub Repository](https://github.com/simeononsecurity/Applocker-Hardening)\n```powershell\nSet-ExecutionPolicy -ExecutionPolicy RemoteSigned -Force\nGet-ChildItem -Recurse *.ps1 | Unblock-File\n.\\sos-applockerhardening.ps1\n```\n### Automated Install:\nThe script may be launched from the extracted GitHub download like this:\n```powershell\niex ((New-Object System.Net.WebClient).DownloadString('https://simeononsecurity.ch/scripts/sosapplocker.ps1'))\n```\n\u003ca href=\"https://simeononsecurity.ch\" target=\"_blank\" rel=\"noopener noreferrer\"\u003e\n  \u003ch2\u003eExplore the World of Cybersecurity\u003c/h2\u003e\n\u003c/a\u003e\n\u003ca href=\"https://simeononsecurity.ch\" target=\"_blank\" rel=\"noopener noreferrer\"\u003e\n  \u003cimg src=\"https://simeononsecurity.ch/img/banner.png\" alt=\"SimeonOnSecurity Logo\" width=\"300\" height=\"300\"\u003e\n\u003c/a\u003e\n\n### Links:\n- #### [github.com/simeononsecurity](https://github.com/simeononsecurity)\n- #### [simeononsecurity.ch](https://simeononsecurity.ch)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsimeononsecurity%2Fapplocker-hardening","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsimeononsecurity%2Fapplocker-hardening","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsimeononsecurity%2Fapplocker-hardening/lists"}