Apply recommended EMET protections to Internet Explorer
Registry Hive | HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER |
Registry Path | Software\Policies\Microsoft\EMET\Defaults |
Value Name | *\Internet Explorer\iexplore.exe |
Value Type | REG_SZ |
Value | +EAF+ eaf_modules:mshtml.dll;flash*.ocx;jscript*.dll;vbscript.dll;vgx.dll +ASR asr_modules:npjpi*.dll;jp2iexp.dll;vgx.dll;msxml4*.dll;wshom.ocx;scrrun.dll;vbscript.dll asr_zones:1;2 |
Registry Hive | HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER |
Registry Path | Software\Policies\Microsoft\EMET\Defaults |
Value Name | *\Internet Explorer\iexplore.exe |
Value Type | REG_DWORD |
Value |
Included products and mitigations:
- Microsoft Internet Explorer - all default mitigations and EAF+, and ASR blocking numerous risky modules except in the Intranet and Trusted Sites zones