From 20076482964245337ae0355db6de40724814d0a2 Mon Sep 17 00:00:00 2001 From: Denise Vangel-MSFT Date: Wed, 8 Jan 2020 15:29:11 -0800 Subject: [PATCH] Update enable-exploit-protection.md --- .../microsoft-defender-atp/enable-exploit-protection.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md index 26b16a6530..73d6b7ed23 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md +++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md @@ -25,6 +25,9 @@ manager: dansimp [Exploit protection](exploit-protection.md) helps protect against malware that uses exploits to infect devices and spread. Exploit protection consists of a number of mitigations that can be applied to either the operating system or individual apps. +> [!IMPORTANT] +> .NET 2.0 is not compatible with some exploit protection capabilities, specifically, Export Address Filtering (EAF) and Import Address Filtering (IAF). If you have enabled .NET 2.0, usage of EAF and IAF are not supported. + Many features from the Enhanced Mitigation Experience Toolkit (EMET) are included in exploit protection. You can enable each mitigation separately by using any of these methods: @@ -36,10 +39,7 @@ You can enable each mitigation separately by using any of these methods: - [Group Policy](#group-policy) - [PowerShell](#powershell) -They are configured by default in Windows 10. - -You can set each mitigation to on, off, or to its default value. -Some mitigations have additional options. +Exploit protection is configured by default in Windows 10. You can set each mitigation to on, off, or to its default value. Some mitigations have additional options. You can [export these settings as an XML file](import-export-exploit-protection-emet-xml.md) and deploy them to other machines.