Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/nsacyber/AppLocker-Guidance

Configuration guidance for implementing application whitelisting with AppLocker. #nsacyber
https://github.com/nsacyber/AppLocker-Guidance

application-whitelisting applocker microsoft-applocker whitelisting windows

Last synced: about 2 months ago
JSON representation

Configuration guidance for implementing application whitelisting with AppLocker. #nsacyber

Host: GitHub
URL: https://github.com/nsacyber/AppLocker-Guidance
Owner: nsacyber
License: other
Archived: true
Created: 2015-05-01T19:01:28.000Z (over 9 years ago)
Default Branch: master
Last Pushed: 2019-12-17T16:33:18.000Z (over 4 years ago)
Last Synced: 2024-04-17T10:59:03.462Z (5 months ago)
Topics: application-whitelisting, applocker, microsoft-applocker, whitelisting, windows
Language: PowerShell
Homepage:
Size: 22.5 KB
Stars: 201
Watchers: 39
Forks: 63
Open Issues: 3
Metadata Files:
- Readme: README.md
- License: LICENSE.md

Awesome Lists containing this project

awesome-security-hardening - NSA - AppLocker Guidance - Configuration guidance for implementing application whitelisting with AppLocker (Windows / Ubuntu)

README

        # AppLocker Guidance

Microsoft AppLocker is an [application whitelisting](https://apps.nsa.gov/iaarchive/library/ia-guidance/security-tips/application-whitelisting.cfm) feature built into Windows. Application whitelisting is one of [Information Assurance top 10 mitigation strategies](https://apps.nsa.gov/iaarchive/library/ia-guidance/iads-top-10-information-assurance-mitigation-strategies.cfm).

This project contains scripts and configuration files for aiding administrators in implementing Microsoft AppLocker as outlined in the [Application Whitelisting using Microsoft AppLocker](https://apps.nsa.gov/iad/library/ia-guidance/tech-briefs/application-whitelisting-using-microsoft-applocker.cfm) paper. 

**The starter policy provided in this repository is for Windows 7 and Windows 10**. A Group Policy Object (GPO) for Windows 10 can be found in the [AppLocker folder](https://github.com/nsacyber/Windows-Secure-Host-Baseline/tree/master/AppLocker) in the [Windows Secure Host Baseline repository](https://github.com/nsacyber/Windows-Secure-Host-Baseline/).

## Guidance

NSA Information Assurance has a security guide for AppLocker called [Application Whitelisting Using Microsoft AppLocker](https://apps.nsa.gov/iad/library/ia-guidance/tech-briefs/application-whitelisting-using-microsoft-applocker.cfm).

## Links

* [AppLocker Technical Reference](https://docs.microsoft.com/en-us/windows/device-security/applocker/applocker-technical-reference)

* [Requirements to use AppLocker](https://docs.microsoft.com/en-us/windows/device-security/applocker/requirements-to-use-applocker)

* [AppLocker Policies Deployment Guide](https://docs.microsoft.com/en-us/windows/device-security/applocker/applocker-policies-deployment-guide)

## License

See [LICENSE](LICENSE.md).

## Disclaimer

See [DISCLAIMER](DISCLAIMER.md).