Page 2 of 2 FirstFirst 12

  1. Joined : Oct 2014
    Trnava
    Posts : 1,728
    Windows Home x64
       16 Aug 2016 #11

    PS can be disabled via ExecutionPolicy, but that can be easily bypassed via, you can guess, via PS.

    https://blog.netspi.com/15-ways-to-b...ecution-policy

    Mystere said: View Post
    What do you mean by "exploitable processes"? It's nor more exploitable than the command prompt. In fact, it has significant security above and beyond what Command Prompt offers to prevent exploits

    Actually majority of malware use WSH or PS to infect, especially ransomware and exploits without user intervention.

    Malware Created with Microsoft PowerShell Is on the Rise

    https://securelist.com/blog/research...rshell-malware

    Powershell or WSH are completely useless for common users, so there is no reason to keep it available.

    Today: https://threatpost.com/latest-window...ecution/119887
    Last edited by TairikuOkami; 16 Aug 2016 at 14:38.
      My System SpecsSystem Spec


  2. Joined : Sep 2014
    Posts : 2,923
    Windows 10 Pro
       16 Aug 2016 #12

    TairikuOkami said: View Post
    Powershell or WSH are completely useless for common users, so there is no reason to keep it available.
    Except that it is a requirement for many new kinds of maintenance a regular user might have to do. For instance, you can't uninstall and reinstall many apps without powershell.

    Still, it's easy to disable it via group policy.

    How to Block an Application or .EXE from Running in Windows
      My System SpecsSystem Spec


  3. Joined : Jun 2015
    Posts : 262
    windows 10 pro x64 stable build
       01 Sep 2016 #13

    Mystere said: View Post
    Except that it is a requirement for many new kinds of maintenance a regular user might have to do. For instance, you can't uninstall and reinstall many apps without powershell.

    Still, it's easy to disable it via group policy.

    How to Block an Application or .EXE from Running in Windows
    it seems that there are ways around this simple form of blocking
    PowerShell - One Tool to Rule Them All
    but with Process Lasso, you can automatically terminate any powershell process or script interpreter.
    under the options menu you have "configure disallowed processes", and and after adding your list of processes, you should put a tick in "match wildcards"
      My System SpecsSystem Spec


 
Page 2 of 2 FirstFirst 12


Similar Threads
Thread Forum
Solved PowerShell
I have a 64-bit laptop running Win 10 Home. I just notice in All apps, there is an entry of PowerShell and PowerShell (x86). I realize the former is for 64-bit and the latter is for 32-bit. Question : In my 64-bit laptop, when I open...
Performance & Maintenance
Solved Different kinds of Powershell?
I've recently used Powershell, but there appear to be several different versions of this utility. Some of them work--some of them merely report not being able to find something or call up something else. For instance, when I call up Powershell from...
General Support
Solved Can't disable Ctrl Alt Disable on Windows 10 Login screen
Hello my friends, I activated the ctrl alt disable login screen for Windows 10 by using this registry key from this forum.(Lock Screen - Enable or Disable in Windows 10 - Windows 10 Forums). I downloaded and installed the key to disable only...
General Support
Powershell glitch
Hi fellow W10 users, This week I switched to using Windows 10, but I have this strange problem/glitch in PowerShell. At first I did an upgrade from Windows 8.1 to Windows 10, after which I did a full clean install. Now here it comes......
Software and Apps
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 12:47.
Find Us
Twitter Facebook Google+



Windows 10 Forums