WindowsHybridHardening

Discussion in 'other anti-malware software' started by digmor crusher, Aug 17, 2023.

  1. digmor crusher

    digmor crusher Registered Member

    Another tool from Andy.


    WindowsHybridHardening Light ver. 1.0.0.0.:
    https://github.com/AndyFul/Hard_Con...e Windows Hardening/WHHLight_Package_1000.exe

    This is the first version, so it is recommendable to run the application on the Virtual Machine.

    Problems can arise from the AVs, which can tamper with WHH Light. For example, before submitting false positives, Microsoft Defender detected WHH as the malware (3 different behavior-based detections). After my submission, the detections were removed, but the application was still blocked by ASR rules.
    Currently (after some negotiations with Microsoft) the application is accepted by:
    • SmartScreen and PUA protection (in Edge and Defender),
    • Smart App Control,
    • ASR rules (except a single rule related to running from USB).
     
    digmor crusher, Aug 17, 2023
    #1
  2. plat

    plat Registered Member

    There is still a security warning when attempting to run the exe from Firefox. Also, Sandboxie does not make this eligible for Immediate Recovery, only Quick Recovery when Firefox is closed. I guess Andy Ful will get this signed by Microsoft once he's finished fully developing this program and its Help Files. :thumb:

    whh sec.png
     
    plat, Aug 17, 2023
    #2
  3. NormanF

    NormanF Registered Member

    I tried it but quickly reverted the rules to the default. I do not like the folder being placed on the desktop; it should be installed in the same location to which it was downloaded.

    Looks promising but more work is needed.
     
    NormanF, Aug 17, 2023
    #3
  4. digmor crusher

    digmor crusher Registered Member

    Its still a work in progress, give it time.

    You can move that folder anywhere, you just have to whitelist whatever folder you move it to.
     
    digmor crusher, Aug 17, 2023
    #4
  5. Gandalf_The_Grey

    Gandalf_The_Grey Registered Member

    WindowsHybridHardening Light (WHHLight) is now stable and version 1.0.1.1 is released today.
    GitHub:
    Hard_Configurator/WindowsHybridHardening at master · AndyFul/Hard_Configurator · GitHub
    MT discussion thread:
    Serious Discussion - WHHLight - simplified application control for Windows Home and Pro. | MalwareTips Forums
     
    Gandalf_The_Grey, Jan 19, 2024
    #5
  6. Rasheed187

    Rasheed187 Registered Member

    BTW, on MalwareTips I see that a user named Bot is active, is this really some kind of AI bot, or a real person acting funny? However, the posts that this Bot makes are quite helpful. :p
     
    Rasheed187, Jan 21, 2024
    #6
  7. stapp

    stapp Global Moderator

    https://malwaretips.com/help/ai-disclaimer/
     
    stapp, Jan 21, 2024
    #7
  8. EASTER

    EASTER Registered Member

    EASTER, Jan 21, 2024
    #8
  9. Rasheed187

    Rasheed187 Registered Member

    Wow, so this some bot based on ChatGPT? I must say it's quite impressive, perhaps I should be less skeptical about this AI stuff. But how come he's already active since 2016, I mean ChatGPT wasn't a thing yet? Or perhaps this Bot was less advanced back then. :p
     
    Rasheed187, Jan 22, 2024
    #9
  10. Jan Willy

    Jan Willy Registered Member

    Jan Willy, Jan 23, 2025
    #10
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice