✅Supports Windows Client and Server. ✅No dependency on any executable in the OS. ✅Supports many Exploit Mitigation features. ✅No telemetry ✅X64 and ARM64 support ✅Many more new features still on the way! https://t.co/qDxs2hkul4 #Intune #RedTeam #Cyber #Windows #Security

It is truly shaped by Community feedback and requests. Available on Microsoft Store for free https://t.co/b3Ho5HMqtr ✅Supports many languages. ✅Sub-second startup time. ✅Built with modern C#/Rust/C++ ✅No 3rd party dependency. ✅Backup and Restore System State. #CyberSecurity

After Months of Development, FINALLY ready to share: Harden System Security🎉 ✅ Complete System Hardening ✅ Security Posture Analysis ✅ All-in-One Toolkit ✅ Built-in Intune support for Scalability ✅ Beautiful Modern UI ✅ CLI support https://t.co/lfd3SaDvvM #Cyber #Windows

1 thing I'm not sure about though is why they mentioned my app uses USB or Bluetooth? I can guarantee that it doesn't. Source code available🙂 https://t.co/lfd3SaE3lk

Happy and proud to see my app was approved for use by the U.S government VA. 🫡❤️🙏🏻 I'm always open to assisting and implementing extra features that might be needed too. #Cyber #Windows #CyberSecurity https://t.co/qRJlhhQrta

I'm honored and super excited to be accepted as @Microsoft MVP for the 2nd year, this time in 2 new categories!! Shoutout to @MVPAward and @BelaLior for accepting me in their community. ❤️🙏🏻 Been working on something big, will share more dits soon 😇💯 https://t.co/pYcDRtDlaU

fit check

All WDAC does is allowing whatever You allow, you are in charge. Don't want vulnerable electron based apps to be exploited? Then don't allow them, simple as that. Also don't allow the entire store apps. Remember, default templates are good starting points but Not the strictest.

Go to Microsoft Store, there are tens of thousands of apps. Find 1 vulnerability in any of them that allows you to run another program, exploit it. Does that mean you now bypassed WDAC? 🤪

Sorry but nothing is bypassed here. The blog post intentionally uses a WDAC policy that allows ALL store apps, ENTIRE Office suite, Teams and SO MUCH more. They find 1 vulnerability in electron-based app and claim they bypassed the "strictest" WDAC policy. You be the judge... 🤷‍♀️

Bonus: The app can be set as default handler of App Control XML files and CIP Code Integrity files (they don't have any default opener). They get beautiful icons like the pics below. So you just need to double click on them and open them in the AppControl Manager's policy Editor.

Also wrote this article explaining technical details of converting XML to CIP binary and reversing that process. https://t.co/gXwyLaHAyj

Download it now from Microsoft Store. Source code available on GitHub. Community contribution and feedbacks are always welcome! https://t.co/TBAVLyqhTK

Just released new AppControl Manager update ✅Reverse Code Integrity binaries (CIP) completely back to XML! ✅Brings the entire suite of App Control features on Home edition OS (not normally possible) ✅Rust interop #cyber #Windows #Redteam #CyberSecurity https://t.co/NZrjPIf1s9

Definitely agree! @CyberCakeX 's style is as impressive as her abilities. 😉 Her apps and GitHub page are charming, with great color and layout choices. She combines talent and elegance in a very captivating way.

Market dips are temporary CyberSec girls are forever 💯

I heard from many people that they wanted Signed MSIX packages and now it's available. The app also can run without Admin privileges. Source code available on GitHub, also available through Winget + Documentation👇 https://t.co/NZrjPIf1s9

I just published AppControl Manager to the Microsoft Store! 🎊✨ ✅Signed and Verified ✅Now has Policy Editor ✅Secure your Client/Server for Free with the right and accurate tool. ✅Local + Intune + MDE Advanced Hunting #CyberSecurity #Windows #redteam https://t.co/gR7unWiyVA

🔐 Setting up WDAC rules? MVP @CyberCakeX breaks down rule types in this #MicrosoftLearn guide to help you secure your environment with ease. 👉 Get the insights you need to stay secure & in control 👉 https://t.co/hU0kx5ni05 #MVPBuzz

There was a post that was retweeted by some folks that wrongly claimed that you can be clever and deploy an unsigned policy first so an attacker will fail to deploy their own policy, which is 100% false. Get the Correct information from the article above. Happy new year! 🤗