TH11 Whitelisting: Smacking Down Ransomware with Microsoft AppLocker and 3rd Party Whitelisting Tools

August 10th, 2017

11:00am - 12:15pm

Level: Intermediate

Jeremy Moskowitz

Jeremy Moskowitz

Group Policy MVP

Founder / PolicyPak Software

Got Ransomware? Maybe you did yesterday. Maybe you will tomorrow. Come to this session, and maybe you won't. Whitelisting is the only true way to ensure you won't get burned by Ransomware. This session will cover the ins and outs of Microsoft's in-the-box Applocker, along with some third party tools to help you manage whitelisting. By the time you're done, you'll be a whitelisting master with no Ransomware.

You will learn:

  • About Microsoft Applocker from the ground up
  • Where Applocker does a great job, and not such a great job
  • About third party tools which can augment or replace Applocker if it's not the right solution for your organization