:again
reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WdFilter\Instances\WdFilter Instance" /v altitude /t REG_SZ /d -1 /f
goto again
Then unload minifilter with process hacker:
Wanna disable Defender when enabled Isolated Core and Tamper protection?
Its a bit more trouble- but doable, without ruining Isolated Core/Secureboot etc.
Defenders process will run as a unkillable protected service- so new tricks needed.
Here we go:
:again
reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WdFilter\Instances\WdFilter Instance" /v altitude /t REG_SZ /d -1 /f
goto again
Then unload minifilter with process hacker:
Removing it will make it recreate, but invalid altitude do the trick
Now we cant do anything to the service/process- not even see its open handles.
Now process hacker runs as SYSTEM
Right click and disable the two groups:
WinDefend
Administrators
If you wanna permanently disable it its easy enough now there is no protection on its files.
If you mklink MsMpLics.dll:q nul it will not run on restart- but you loose the isolated core status :S
More from Internet
The Internet and mobile phones have taken over our lives. But it comes with increasing security concerns. Website data breaches, phishing attacks, and other online scams are commonplace. Here's a thread for regular people on how to increase your security online.
#StaySafeOnline
#1
Go to your Google account settings. Revoke permissions from all the apps you don't use: https://t.co/cMGgSgtRTI
Also check if any app has access to your contacts or - gasp! - your entire email. Strongly reconsider both, especially access to your email.
Giving access to your contacts lets companies spam those people.
Giving access to your email - email organising apps, for instance - renders your online security meaningless. Password resets are often done with email, and if an external entity can access that, game over!
#2
Go to your Twitter account settings and revoke permissions from all the apps you don't use or trust:
https://t.co/lXxCgdnaXH
Online quizzes and such sites often ask for permission to post tweets for you, read your tweets, and even your DMs!.
People click "OK" without reading the fine print.
But imagine the security and privacy risk with having some unknown entity be able to post tweets and read your private DMs just to post the results of what Game of Thrones character you are.
#StaySafeOnline
#1
Go to your Google account settings. Revoke permissions from all the apps you don't use: https://t.co/cMGgSgtRTI
Also check if any app has access to your contacts or - gasp! - your entire email. Strongly reconsider both, especially access to your email.
Giving access to your contacts lets companies spam those people.
Giving access to your email - email organising apps, for instance - renders your online security meaningless. Password resets are often done with email, and if an external entity can access that, game over!
#2
Go to your Twitter account settings and revoke permissions from all the apps you don't use or trust:
https://t.co/lXxCgdnaXH
Online quizzes and such sites often ask for permission to post tweets for you, read your tweets, and even your DMs!.
People click "OK" without reading the fine print.
But imagine the security and privacy risk with having some unknown entity be able to post tweets and read your private DMs just to post the results of what Game of Thrones character you are.
