Differences

This shows you the differences between two versions of the page.

--- windows:exploit_protection [2021/08/26 18:55] – Sean Rhone
+++ windows:exploit_protection [2021/10/10 13:02] – Sean Rhone
@@ Line 1: / Line 1: @@
+====== AMD Graphics ======
 <code>
-Set-ProcessMitigation -PolicyFilePath Settings.xml</code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="AMDRSServ.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="atieclxx.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="RadeonSoftware.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="amdow.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="AMDRSSrcExt.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="cncmd.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="QtWebEngineProcess.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="amdfendrsr.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+</MitigationPolicy></code>
+====== Built-in Applications ======
 <code>
 <?xml version="1.0" encoding="UTF-8"?>
 <MitigationPolicy>
-  <SystemConfig>
+  <AppConfig Executable="audiodg.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
     <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
     <SEHOP Enable="false" TelemetryOnly="false" />
     <Heap TerminateOnError="false" />
-  </SystemConfig>
+    <ChildProcess DisallowChildProcessCreation="false" />
-  <AppConfig Executable="ExtExport.exe">
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
   </AppConfig>
-  <AppConfig Executable="ie4uinit.exe">
+  <AppConfig Executable="ctfmon.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ieinstal.exe">
+  <AppConfig Executable="dwm.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ielowutil.exe">
+  <AppConfig Executable="explorer.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ieUnatt.exe">
+  <AppConfig Executable="lsass.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="mscorsvw.exe">
+  <AppConfig Executable="ntoskrnl.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="msfeedssync.exe">
+  <AppConfig Executable="svchost.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="mshta.exe">
+  <AppConfig Executable="TiWorker.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ngen.exe">
+  <AppConfig Executable="WUDFHost.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ngentask.exe">
+  <AppConfig Executable="ApplicationFrameHost.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="PresentationHost.exe">
+  <AppConfig Executable="dllhost.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="winlogon.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="csrss.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="wininit.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="fontdrvhost.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="dasHost.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="smss.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="services.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+</MitigationPolicy></code>
+====== Firefox ======
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="firefox.exe">
     <DEP Enable="true" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="true" RequireInfo="false" BottomUp="true" HighEntropy="true" />
+    <StrictHandle Enable="true" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="true" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="true" SuppressExports="false" StrictControlFlowGuard="true" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="true" />
+    <Fonts DisableNonSystemFonts="true" AuditOnly="false" Audit="false" />
+    <ImageLoad BlockRemoteImageLoads="true" AuditRemoteImageLoads="false" BlockLowLabelImageLoads="true" AuditLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="true" AuditEnableExportAddressFilter="false" EnableExportAddressFilterPlus="true" AuditEnableExportAddressFilterPlus="false" EnableImportAddressFilter="true" AuditEnableImportAddressFilter="false" EnableRopStackPivot="true" AuditEnableRopStackPivot="false" EnableRopCallerCheck="true" AuditEnableRopCallerCheck="false" EnableRopSimExec="true" AuditEnableRopSimExec="false" />
     <SEHOP Enable="true" TelemetryOnly="false" />
     <Heap TerminateOnError="true" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="true" UserShadowStackStrictMode="true" AuditUserShadowStack="false" />
   </AppConfig>
-  <AppConfig Executable="PrintDialog.exe">
+</MitigationPolicy></code>
-    <ExtensionPoints DisableExtensionPoints="true" />
-  </AppConfig>
-  <AppConfig Executable="runtimebroker.exe">
+====== Games ======
-    <ExtensionPoints DisableExtensionPoints="true" />
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="Gw2-64.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="SystemSettings.exe">
+  <AppConfig Executable="starwarssquadrons.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
-  </AppConfig>
-  <AppConfig Executable="OculusDash.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 74: / Line 520: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="OVRServer_x64.exe">
+  <AppConfig Executable="D2R.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 91: / Line 537: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="OculusClient.exe">
+  <AppConfig Executable="Clone Hero.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 108: / Line 554: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="explorer.exe">
+  <AppConfig Executable="amtrucks.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 125: / Line 571: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="dwm.exe">
+  <AppConfig Executable="AoE2DE_s.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 142: / Line 588: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="starwarssquadrons.exe">
+  <AppConfig Executable="Beat Saber.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 176: / Line 622: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="pCARS3.exe">
+  <AppConfig Executable="DJMAX RESPECT V.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 193: / Line 639: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Gw2-64.exe">
+  <AppConfig Executable="ZFGameBrowser.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 210: / Line 656: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Game.exe">
+  <AppConfig Executable="dota2.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 227: / Line 673: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="DOOMEternalx64vk.exe">
+  <AppConfig Executable="Melvor Idle.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="pCARS3.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 278: / Line 741: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="amtrucks.exe">
+  <AppConfig Executable="AI.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 295: / Line 758: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Beat Saber.exe">
+  <AppConfig Executable="Crimsonland-D3D11.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 312: / Line 775: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Diablo III64.exe">
+  <AppConfig Executable="DOOMEternalx64vk.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="GTAIV.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 346: / Line 826: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Wow.exe">
+  <AppConfig Executable="TheForestVR.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 363: / Line 843: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="AoE2DE_s.exe">
+</MitigationPolicy></code>
+====== Oculus ======
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="OculusClient.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 380: / Line 868: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="DJMAX RESPECT V.exe">
+  <AppConfig Executable="Home2.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 397: / Line 885: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="dota2.exe">
+  <AppConfig Executable="Home2-Win64-Shipping.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 414: / Line 902: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ffxv_s.exe">
+  <AppConfig Executable="OVRRedir.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 431: / Line 919: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="HorizonZeroDawn.exe">
+  <AppConfig Executable="OVRServer_x64.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 448: / Line 936: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="MonsterHunterWorld.exe">
+  <AppConfig Executable="OVRServiceLauncher.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 465: / Line 953: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="TheForestVR.exe">
+  <AppConfig Executable="OculusSetup.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 482: / Line 970: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="AI.exe">
+  <AppConfig Executable="OVRLibrarian.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 499: / Line 987: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Incursion-Win64-Shipping.exe">
+  <AppConfig Executable="OVRLibraryService.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 516: / Line 1004: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="vrcompositor.exe">
+  <AppConfig Executable="oculus-driver.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 533: / Line 1021: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
+  <AppConfig Executable="CompatToolCommandLine.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusCompatCheck.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OVRRedistributableInstaller.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusDebugTool.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="Fixer.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusVRCValidator.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusLogGatherer.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="CameraTool.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusMirror.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusDebugToolCLI.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="oculus-overlays.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="Dreamdeck.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="Dreamdeck-Win64-Shipping.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="TouchNUX.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="TouchNUX-Win64-Shipping.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="MontereySetup.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="MontereySetup-Win64-Shipping.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusDash.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="oculus-platform-runtime.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="UnrealCEFSubProcess.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+</MitigationPolicy></code>
+====== SteamVR ======
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
   <AppConfig Executable="vrserver.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
@@ Line 550: / Line 1386: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="vrservice.exe">
+  <AppConfig Executable="vrmonitor.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="vrwebhelper.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="vrcompositor.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="vrdashboard.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 568: / Line 1455: @@
   </AppConfig>
 </MitigationPolicy></code>
+====== System-wide ======
+<code>Set-ProcessMitigation -PolicyFilePath "System-wide.xml"</code>
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <SystemConfig>
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </SystemConfig>
+</MitigationPolicy></code>