deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-13 22:07:22 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
windows-itpro-docs/windows/security/threat-protection/windows-defender-exploit-guard/enable-exploit-protection.md
Justin Hall 1b87fca48c added link to ATP
2018-11-06 11:24:01 -08:00

2.9 KiB
Raw Blame History

title, keywords, description, search.product, ms.pagetype, ms.prod, ms.mktglfcycl, ms.sitesec, ms.pagetype, ms.localizationpriority, author, ms.author, ms.date
title keywords description search.product ms.pagetype ms.prod ms.mktglfcycl ms.sitesec ms.pagetype ms.localizationpriority author ms.author ms.date
Turn on exploit protection to help mitigate against attacks exploit, mitigation, attacks, vulnerability Exploit protection in Windows 10 provides advanced configuration over the settings offered in EMET. eADQiWindows 10XVcnh security w10 manage library security medium andreabichsel v-anbic 08/08/2018

Enable exploit protection

Applies to:

Exploit protection applies helps protect devices from malware that use exploits to spread and infect. It consists of a number of mitigations that can be applied at either the operating system level, or at the individual app level.

Many of the features that were part of the Enhanced Mitigation Experience Toolkit (EMET) are included in exploit protection.

Enable and audit exploit protection

You enable and configure each exploit protection mitigation separately. Some mitigations apply to the entire operating system, while others can be targeted towards specific apps.

The mitigations available in exploit protection are enabled or configured to their default values automatically in Windows 10. However, you can customize the configuration to suit your organization and then deploy that configuration across your network.

You can also set mitigations to audit mode. Audit mode allows you to test how the mitigations would work (and review events) without impacting the normal use of the machine.

Warning

Some security mitigation technologies may have compatibility issues with some applications. You should test exploit protection in all target use scenarios by using audit mode before deploying in production.

You can also convert an existing EMET configuration file (in XML format) and import it into exploit protection. This is useful if you have been using EMET and have a customized series of policies and mitigations that you want to keep using.

See the following topics for instructions on configuring exploit protection mitigations and importing, exporting, and converting configurations:

  1. Configure the mitigations you want to enable or audit
  2. Export the configuration to an XML file that you can use to deploy the configuration to multiple machines.

Related topics