exploit mitigations testing
i don't know about you but #ffmpeg especially in the context of Discord is kind of important and should probably be a signed image, y'know
here's a full list of Exploit Mitigation hardening changes for #Discord on #Windows11
- ACG: On, Audit (doesn't work enforced)
- Block low integrity images: On
- Block untrusted fonts: On
- Code integrity guard: On, Audit (doesn't work enforced)
- Disable extension points: On
- Disable Win32k system calls: On, Audit (doesn't work enforced)
- Do not allow child processes: On, Audit (doesn't work enforced)
- EAF: On
- Hardware-enforced Stack Protection: On, Audit (doesn't work enforced)
- IAF: On
- SimExec: On
- CallCheck: On
- Validate handle usage: On
- Validate image dependency integrity doesn't even work in Audit mode
- StackPivot: On
here's a full list of Exploit Mitigations hardening changes for #EasyAntiCheat on #Windows11
you know, that thing that has full read access to your RAM when you play video games
- ACG: On
- Block low integrity images: On
- Block remote fonts: On
- Block untrusted fonts: On
- Code integrity guard: On
- Disable extension points: On
- Disable Win32k system calls: On, Audit (doesn't work enforced)
- Do not allow child processes: On, Audit (doesn't work enforced)
- EAF: On
- Hardware-enforced Stack Protection: On
- IAF: On
- SimExec: On
- CallerCheck: On
- Validate handle usage: On
- Validate image dependency integrity: On
- StackPivot: On
i wonder if there's a way to automate this with powershell, on a per-app basis? would make a useful github page