-
Notifications
You must be signed in to change notification settings - Fork 13
EMET
strawgate edited this page Jun 8, 2016
·
1 revision
EMET, the Enhanced Mitigation Experience Toolkit, is an anti-exploit tool developed by Microsoft and available to all organizations at no cost.
To implement EMET using C3 Protect you must follow the following steps:
- Enable the EMET Analyses
- Deploy EMET
- Push an EMET policy
The following analyses in the C3 Protect site should be enabled:
- EMET - Configuration - Windows
Use the "Deploy - EMET - 5.5 - Windows" Fixlet in the C3 Patch site to deploy the client
Create a baseline with the following Fixlets:
- Config - EMET Rules - Enable Default Cert Pinning Mitigations - Windows
- Config - EMET Rules - Enable Default Mitigation Actions - Windows
- Config - EMET Rules - Enable Microsoft Application Mitigations - Windows
- Config - EMET Rules - Enable Popular Third-Party Mitigations - Windows
Action the baseline against your endpoints!