Microsoft recommended driver block rules

[SpikeNZ]

Hi all,

For a government security audit requirement, we need to implement the following:

https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-driver-block-rules

I'm thinking we would have to use application control and look up a list of hashes for each of the listed drives (this will be a lot of work).

Has anyone tried to implement this or know how I can easily implement this?

Thanks.

[SpikeNZ]

Anyone?

[DonKid]

Please, open a ticket here.