Windows Defender Exploit Protection for Memory Integrity
GPTKB entity
Statements (21)
Predicate | Object |
---|---|
gptkbp:instanceOf |
gptkb:security
|
gptkbp:alsoKnownAs |
gptkb:Core_Isolation_Memory_Integrity
|
gptkbp:developedBy |
gptkb:Microsoft
|
gptkbp:hasFeature |
gptkb:Group_Policy
gptkb:Windows_Security_app |
https://www.w3.org/2000/01/rdf-schema#label |
Windows Defender Exploit Protection for Memory Integrity
|
gptkbp:includedIn |
gptkb:Windows_10
gptkb:Windows_11 |
gptkbp:partOf |
gptkb:Windows_Defender_Exploit_Protection
|
gptkbp:prevention |
malicious code execution in protected memory
unsigned drivers from loading |
gptkbp:protectedBy |
critical system processes
kernel mode memory |
gptkbp:purpose |
protect against attacks that attempt to inject malicious code into high-security processes
|
gptkbp:requires |
gptkb:64-bit_Windows
compatible hardware virtualization |
gptkbp:status |
optional feature
off (can be enabled by user) |
gptkbp:uses |
gptkb:Hypervisor-protected_Code_Integrity_(HVCI)
|
gptkbp:bfsParent |
gptkb:Windows_11_Enterprise
|
gptkbp:bfsLayer |
7
|