Prevention of running executable files. Is there AppLocker/SRP integrated into the antivirus?

U

UnoMomento2015-11-11 01:17:36

Information Security

UnoMomento, 2015-11-11 01:17:36

Good afternoon
Interested in antivirus, in which there is a function to prohibit the launch of executable files.
I know this can be done using GPOs (AppLocker and Software Restriction Policies), but they are not ideal:
1. they write on the forums how they are bypassed
2. home / starter edition (and some other windows editions) are not supported
3. I would like to have reports , on attempts to launch illegitimate software / left exe files
(as I understand it, in the case of SRP, you need to get pretty confused in order to collect all this data from all machines) 4.
I would like to steer the antivirus and srp centrally through one interface
buying a server for Active Directory (additional entity that needs to be administered)
(without a centralized antivirus in any way, but without AD in this particular case it is tolerable, although usually I am always for AD)

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

M

morgan, 2015-11-11
@UnoMomento

Many antiviruses have long positioned themselves as complex solutions that include additional protection features. From living examples: Kaspersky 10, Мcafee, Symantec Endpoint this is with regard to the first four points. Without AD, the Cisco Security Agent hips gets into the conditions.