Windows Defender Exploit Protection for Memory Integrity
GPTKB entity
Statements (21)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:security
|
| gptkbp:alsoKnownAs |
gptkb:Core_Isolation_Memory_Integrity
|
| gptkbp:developedBy |
gptkb:Microsoft
|
| gptkbp:hasFeature |
gptkb:Group_Policy
gptkb:Windows_Security_app |
| https://www.w3.org/2000/01/rdf-schema#label |
Windows Defender Exploit Protection for Memory Integrity
|
| gptkbp:includedIn |
gptkb:Windows_10
gptkb:Windows_11 |
| gptkbp:partOf |
gptkb:Windows_Defender_Exploit_Protection
|
| gptkbp:prevention |
malicious code execution in protected memory
unsigned drivers from loading |
| gptkbp:protectedBy |
critical system processes
kernel mode memory |
| gptkbp:purpose |
protect against attacks that attempt to inject malicious code into high-security processes
|
| gptkbp:requires |
gptkb:64-bit_Windows
compatible hardware virtualization |
| gptkbp:status |
optional feature
off (can be enabled by user) |
| gptkbp:uses |
gptkb:Hypervisor-protected_Code_Integrity_(HVCI)
|
| gptkbp:bfsParent |
gptkb:Windows_11_Enterprise
|
| gptkbp:bfsLayer |
7
|