Can I block a file execution with AppLocker?

Question

We currently use a combination of a regular and an "advanced/fancy" endpoint malware protection, in the advanced malware app, I can feed a SHA256 hash of an executable into the advanced platform and it will block execution of the given executable.

Can I do the same (blacklisting, not whitelisting) with AppLocker?

Yes, you can block/prevent/deny executables with Applocker, providing that the client OS supports Applocker. — joeqwerty, Jul 03 '15 at 12:29
Because it's probably not what OP actually had a question about, but it does literally fulfil the question. — Joseph Kern, Jul 03 '15 at 14:00

score 4 · Accepted Answer · answered Jul 03 '15 at 13:31

4

Yes, you can block/prevent/deny executables with Applocker, providing that the client OS supports Applocker.

answered Jul 03 '15 at 13:31

joeqwerty

108,377
6
80
171

Thanks! To note, AppLocker seems to [calculate some crazy hash of "it's own."](http://superuser.com/questions/882648/why-are-the-sha256-hashes-used-by-applocker-different-to-other-generators) Sort of annoying, but c'est la vi. – mbrownnyc Jul 06 '15 at 19:24

Can I block a file execution with AppLocker?

1 Answers1