WDACConfig

0.1.5

This is an advanced PowerShell module for WDAC (Windows Defender Application Control) and automates a lot of tasks.

🟢 Please see the GitHub page for Full details and everything about the module: https://github.com/HotCakeX/Harden-Windows-Security/wiki/WDACConfig

🛡️ Here is the list of module's cmdlets

✔️ New-WDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/New-WDACConfig

✔️ New-SupplementalWDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/New-SupplementalWDACConfig

✔️ Remove-WDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/Remove-WDACConfig

✔️ Edit-WDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/Edit-WDACConfig

✔️ Edit-SignedWDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/Edit-SignedWDACConfig

✔️ Deploy-SignedWDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/Deploy-SignedWDACConfig

✔️ Confirm-WDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/Confirm-WDACConfig

✔️ New-DenyWDACConfig: https://github.com/HotCakeX/Harden-Windows-Security/wiki/New-DenyWDACConfig

To get help and syntax on PowerShell console, type:
"Get-Command -Module WDACConfig"
"Get-Help New-WDACConfig"
"Get-Help New-SupplementalWDACConfig"
"Get-Help Remove-WDACConfig"
"Get-Help Edit-WDACConfig"
"Get-Help Edit-SignedWDACConfig"
"Get-Help Deploy-SignedWDACConfig"
"Get-Help Confirm-WDACConfig"
"Get-Help New-DenyWDACConfig"

Minimum PowerShell version

7.3.4

There is a newer prerelease version of this module available.
See the version list below for details.

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Module -Name WDACConfig -RequiredVersion 0.1.5

Copy and Paste the following command to install this package using Microsoft.PowerShell.PSResourceGet More Info

Install-PSResource -Name WDACConfig -Version 0.1.5

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More

Owners

hotcakex

Copyright

Package Details

Author(s)

HotCakeX

Dependencies

This module has no dependencies.

Release Notes

## Version 0.1.5
Added alias for many parameters for easier access.
Added new cmdlet: New-DenyWDACConfig for creating base policies with Deny rules. They can be deployed side by side other policies without conflict.
Added argument completer for many new parameters and improved the previous ones to be smarter in their suggestions.

## Version 0.1.4
Code optimization.
Implemented a check to make sure Windows 11 22H2 is being used as it's a requirement for this module to run.
Improved Remove-WDACConfig cmdlet by making the argument completers only show policies that haven't been already deleted, also applied a fix to this cmdlet for when multiple policies with the same name are deployed.

## Version 0.1.3
Improved Remove-WDACConfig cmdlet so handle situations where multiple policies with the exact same name are deployed and user is trying to remove them.
Changed some of the parameter names in Remove-WDACConfig cmdlet to better reflect their jobs and how they are supposed to be used.
New cmdlet: New-SupplementalWDACConfig: dedicated to making all kinds of supplemental policies only - Removed the Supplemental parameter from New-WDACConfig cmdlet and instead the new cmdlet handles anything related to Supplemental policy creation/deployment.
New-SupplementalWDACConfig cmdlet supports AppxPackages, FilePaths with one or more wildcard characters and of course the normal supplemental policy creation with granular levels and fallbacks and more.
Removed the Debugmode parameter from certain cmdlets and instead now detecting the usage of the default PowerShell -Debug switch and do debugging actions based on that.
The Edit-WDACConfig and Edit-SignedWDACConfig cmdlets now detect and create allow rules for kernel protected files.
New parameter for New-WDACConfig: -DeployLatestBlockRules, will deploy the latest Microsoft recommended block rules on the system, as a standalone base policy.
Implemented a feature to prevent users from accidentally attempting to remove Signed policies that aren't even deployed on the system.
Plus a LOT of code optimizations.

## Version 0.1.2
Made the Get-SignTool function more secure.
Added smarter argument completer to Remove-WDACConfig cmdlet.

Full Change log for previous versions are available on Excel online: (Copy and paste the link in your browser if it isn't clickable)
https://1drv.ms/x/s!AtCaUNAJbbvIhuVPpPeCHSjl75OqBQ?e=qgvzEt

FileList

Version History

Version	Downloads	Last updated
0.4.9	1,151	11/16/2024
0.4.8.2	1,774	11/4/2024
0.4.8.1	331	11/2/2024
0.4.7	947	10/27/2024
0.4.6	1,841	10/12/2024
0.4.5	4,152	9/7/2024
0.4.4	1,783	8/20/2024
0.4.3	1,516	8/5/2024
0.4.2	1,372	7/9/2024
0.4.1	160	7/1/2024
0.4.0	427	6/7/2024
0.3.9	75	6/4/2024
0.3.8	478	4/28/2024
0.3.7	95	4/21/2024
0.3.6	61	4/16/2024
0.3.5	354	3/16/2024
0.3.4	171	3/2/2024
0.3.4-Beta1	8	3/2/2024
0.3.3	123	2/21/2024
0.3.2	103	2/10/2024
0.3.1	190	1/22/2024
0.3.0	142	1/9/2024
0.2.9	66	1/2/2024
0.2.8	41	12/27/2023
0.2.8-Beta3	10	12/27/2023
0.2.8-Beta2	7	12/27/2023
0.2.8-Beta1	9	12/26/2023
0.2.7	190	12/12/2023
0.2.6	222	10/10/2023
0.2.5	26	10/6/2023
0.2.4	42	9/25/2023
0.2.3	34	9/19/2023
0.2.2	66	9/5/2023
0.2.1	121	8/13/2023
0.2.0	83	7/18/2023
0.1.9	47	7/9/2023
0.1.8	97	6/2/2023
0.1.7	15	5/28/2023
0.1.6	12	5/25/2023
0.1.5 (current version)	38	5/18/2023
0.1.4	12	5/14/2023
0.1.3	12	5/13/2023
0.1.2	27	5/3/2023
0.1.1	8	5/1/2023
0.1.0	25	4/22/2023
0.0.9	15	4/15/2023
0.0.8	7	4/14/2023
0.0.7	18	4/10/2023
0.0.6	19	4/5/2023
0.0.5	15	4/4/2023
0.0.4	14	4/3/2023
0.0.3	8	4/2/2023
0.0.2	22	4/2/2023
0.0.1	8	4/2/2023

Show less