Windows Defender - first line of defense against spyware and
other unwanted software
--Windows Defender is now included and enabled by default
-sc query Windefend (sc = service control)
--if STATE equals RUNNING, its running
--Some PowerShell cmdlets
-Get-MpComputerStatus
Gets the status of antimalware software on the computer
-Get-MpThreat
Gets the history of threats detected on the computer
-Get-MpThreatDetection
Gets active and past malware threats that Windows Defender detected
-Remove-MpThreat
Removes active threats from a computer
To turn off Windows Defender real-time monitoring
-Set-MpPreference -DisableRealtimeMonitoring $true
To enable Windows Defender real-time monitoring
-Set-MpPreference -DisableRealtimeMonitoring $false
To add an exclusion
-Add-MpPreference -ExclusionPath "%path%"
To remove an exclusion
-Remove-MpPreference -ExclusionPath "%path%"
-Update-MpSignature
Updates definitions
-Start-MpScan
Starts a scan on a computer
--By default, the GUI for Windows Defender is not installed. To install it...
-Add Roles and Features Wizard
-Features
-Windows Defender
-GUI for Windows Defender
-Get-WindowsFeature
-Install-WindowsFeature Windows-Defender-Gui
--By default, Windows Server Technical Preview does not have Windows Update setup to download and install updates, which includes Defender definition updates.
--Configure Windows Defender with Group Policy
-Compuer Configuration - Admin Templates - Windows Components - Windows Defender
--Windows Defender is now included and enabled by default
-sc query Windefend (sc = service control)
--if STATE equals RUNNING, its running
--Some PowerShell cmdlets
-Get-MpComputerStatus
Gets the status of antimalware software on the computer
-Get-MpThreat
Gets the history of threats detected on the computer
-Get-MpThreatDetection
Gets active and past malware threats that Windows Defender detected
-Remove-MpThreat
Removes active threats from a computer
To turn off Windows Defender real-time monitoring
-Set-MpPreference -DisableRealtimeMonitoring $true
To enable Windows Defender real-time monitoring
-Set-MpPreference -DisableRealtimeMonitoring $false
To add an exclusion
-Add-MpPreference -ExclusionPath "%path%"
To remove an exclusion
-Remove-MpPreference -ExclusionPath "%path%"
-Update-MpSignature
Updates definitions
-Start-MpScan
Starts a scan on a computer
--By default, the GUI for Windows Defender is not installed. To install it...
-Add Roles and Features Wizard
-Features
-Windows Defender
-GUI for Windows Defender
-Get-WindowsFeature
-Install-WindowsFeature Windows-Defender-Gui
--By default, Windows Server Technical Preview does not have Windows Update setup to download and install updates, which includes Defender definition updates.
--Configure Windows Defender with Group Policy
-Compuer Configuration - Admin Templates - Windows Components - Windows Defender
No hay comentarios:
Publicar un comentario