windows

Hacking lab in Windows

Disable Microsoft Defender Antivirus:

In Windows versions 1909 and higher, Tamper Protection was added. Tamper Protection must be disabled, otherwise Group Policy settings are ignored.

Open Windows Security (type Windows Security in the search box)
Virus & threat protection > Virus & threat protection settings > Manage settings
Switch Tamper Protection to Off

It is not necessary to change any other setting (Real Time Protection, etc.)

Important. Tamper Protection must be disabled before changing Group Policy settings.

To permanently disable Real Time Protection

Open Local Group Policy Editor (type gpedit in the search box)
Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus > Real-time Protection
Enable Turn off real-time protection
Reboot

Make sure to reboot before making the next change

To permanently disable Microsoft Defender:

Open Local Group Policy Editor (type gpedit in the search box)
Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus
Enable Turn off Microsoft Defender Antivirus
Reboot

Comando VM

Welcome to CommandoVM - a fully customizable, Windows-based security distribution for penetration testing and red teaming.

GitHub - mandiant/commando-vm: Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]GitHub

Previouspriv esc

Last updated 2 years ago