Defense in depth — the Microsoft way (part 82): INVALID/BOGUSAppLocker rules disable SAFER on Windows 11 22H2

Hi @ll,

in Windows 11 22H2. some imbeciles from Redmond added the following
(of course WRONG and INVALID) registry entries and keys which they
dare to ship to their billion world-wide users:



JFTR: the time stamp is 100ns past midnight on 1601-01-01;
the rule count is wrong too, there are ZERO rules.

Although these entries are bogus and no rules are actually present,
they disable SAFER as documented, for example in

FIX: remove these registry entries and/or keys to enable SAFER again!

stay tuned, and far away from the crap made in Redmond
Sent through the Full Disclosure mailing list
Web Archives & RSS:

Source: 31/beF/3202/erusolcsidlluf/gro.stsilces

© 版权声明
点赞6 分享
评论 抢沙发