Just released new AppControl Manager update. ✅Reverse Code Integrity binaries (CIP) completely back to XML!.✅Brings the entire suite of App Control features on Home edition OS (not normally possible).✅Rust interop.#cyber #Windows #Redteam #CyberSecurity.

I'm honored and super excited to be accepted as @Microsoft MVP for the 2nd year, this time in 2 new categories!! . Shoutout to @MVPAward and @BelaLior for accepting me in their community. ❤️🙏🏻. Been working on something big, will share more dits soon 😇💯.

fit check

All WDAC does is allowing whatever You allow, you are in charge. Don't want vulnerable electron based apps to be exploited? Then don't allow them, simple as that. Also don't allow the entire store apps. Remember, default templates are good starting points but Not the strictest.

Go to Microsoft Store, there are tens of thousands of apps. Find 1 vulnerability in any of them that allows you to run another program, exploit it. Does that mean you now bypassed WDAC? 🤪

Sorry but nothing is bypassed here. The blog post intentionally uses a WDAC policy that allows ALL store apps, ENTIRE Office suite, Teams and SO MUCH more. They find 1 vulnerability in electron-based app and claim they bypassed the "strictest" WDAC policy. You be the judge. 🤷‍♀️.

Bonus: The app can be set as default handler of App Control XML files and CIP Code Integrity files (they don't have any default opener). They get beautiful icons like the pics below. So you just need to double click on them and open them in the AppControl Manager's policy Editor.

Also wrote this article explaining technical details of converting XML to CIP binary and reversing that process.

Download it now from Microsoft Store. Source code available on GitHub. Community contribution and feedbacks are always welcome!.

RT @Fahad__M__A: Definitely agree! @CyberCakeX 's style is as impressive as her abilities. 😉.Her apps and GitHub page are charming, with gr….

Market dips are temporary.CyberSec girls are forever 💯

I heard from many people that they wanted Signed MSIX packages and now it's available. The app also can run without Admin privileges. Source code available on GitHub, also available through Winget + Documentation👇.

I just published AppControl Manager to the Microsoft Store! 🎊✨.✅Signed and Verified.✅Now has Policy Editor.✅Secure your Client/Server for Free with the right and accurate tool. ✅Local + Intune + MDE Advanced Hunting. #CyberSecurity #Windows #redteam .

RT @MVPAward: 🔐 Setting up WDAC rules? MVP @CyberCakeX breaks down rule types in this #MicrosoftLearn guide to help you secure your environ….

There was a post that was retweeted by some folks that wrongly claimed that you can be clever and deploy an unsigned policy first so an attacker will fail to deploy their own policy, which is 100% false. Get the Correct information from the article above. Happy new year! 🤗.

Wrote this today about countermeasures against abuse of App Control policies to blind EDRs. Also talk about.✅Tamper resistant signed policies.✅ TCG Storage encryption.✅A big chart of offensive/defensive actions. #Cyber #Windows #CyberSecurity #Defender.

Looking for technical documentation about how the app was built? How secure it is? Which URLs it uses? List of all the features it offers? Source code? Check out this document. Have any questions? Reach out on GitHub or X. #Windows #Security #WDAC .

Also recorded a 40mins video demoing the app. It has more features now since i recorded it. I go over all the details and also mention lots of useful information about Application control for business in Windows. make sure to check it out. #cybersecurity .

Made new app: AppControl Manager.✅Modern GUI.✅Powerful defensive tool.✅Manage Code Integrity in Windows.✅Decide which apps run in your OS.✅Create policy for remote systems (Intune).✅MDE Advanced Hunting support.✅more. #Cyber #Windows #cybersecurity.

RT @dwizzzleMSFT: "Administrator protection introduces a new security boundary with our support to fix any reporte….