Microsoft Defender for Endpoint Advanced Hunting and Application Control for Business - WDACConfig

This video shows how to use WDACConfig module with Microsoft Defender for Endpoint (MDE) Advanced Hunting results to create Application Control policies.

WDACConfig is a free, open-source PowerShell module, it has so many features, one of them is creating Application Control (WDAC) policies from MDE Advanced Hunting logs. It can process huge amounts of Advanced Hunting logs quickly and accurately, will allow you to filter the logs by multiple criteria and offers a GUI for log selection.

Text-based guide is also available:
https://github.com/HotCakeX/Harden-Wi...

Cmdlet documentation for ConvertTo-WDACPolicy available here:
https://github.com/HotCakeX/Harden-Wi...

WDACConfig module on PowerShell Gallery:
https://www.powershellgallery.com/pac...

My GitHub repository for source code and everything else
https://github.com/HotCakeX/Harden-Wi...