Differences

This shows you the differences between two versions of the page.

--- windows:exploit_protection [2021/08/26 18:54] – Sean Rhone
+++ windows:exploit_protection [2021/10/10 13:04] (current) – Sean Rhone
@@ Line 1: / Line 1: @@
-====== Settings.xml ======
+====== AMD Graphics ======
 <code>
-Set-ProcessMitigation -PolicyFilePath Settings.xml</code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="AMDRSServ.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="atieclxx.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="RadeonSoftware.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="amdow.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="AMDRSSrcExt.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="cncmd.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="QtWebEngineProcess.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="amdfendrsr.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+</MitigationPolicy></code>
+====== Built-in Applications ======
 <code>
 <?xml version="1.0" encoding="UTF-8"?>
 <MitigationPolicy>
-  <SystemConfig>
+  <AppConfig Executable="audiodg.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
     <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
     <SEHOP Enable="false" TelemetryOnly="false" />
     <Heap TerminateOnError="false" />
-  </SystemConfig>
+    <ChildProcess DisallowChildProcessCreation="false" />
-  <AppConfig Executable="ExtExport.exe">
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
   </AppConfig>
-  <AppConfig Executable="ie4uinit.exe">
+  <AppConfig Executable="ctfmon.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ieinstal.exe">
+  <AppConfig Executable="dwm.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ielowutil.exe">
+  <AppConfig Executable="explorer.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ieUnatt.exe">
+  <AppConfig Executable="lsass.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="mscorsvw.exe">
+  <AppConfig Executable="ntoskrnl.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="msfeedssync.exe">
+  <AppConfig Executable="svchost.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="mshta.exe">
+  <AppConfig Executable="TiWorker.exe">
-    <ASLR ForceRelocateImages="true" RequireInfo="false" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ngen.exe">
+  <AppConfig Executable="WUDFHost.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ngentask.exe">
+  <AppConfig Executable="ApplicationFrameHost.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="PresentationHost.exe">
+  <AppConfig Executable="dllhost.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="winlogon.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="csrss.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="wininit.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="fontdrvhost.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="dasHost.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="smss.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="services.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+</MitigationPolicy></code>
+====== Firefox ======
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="firefox.exe">
     <DEP Enable="true" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="true" RequireInfo="false" BottomUp="true" HighEntropy="true" />
+    <StrictHandle Enable="true" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="true" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="true" SuppressExports="false" StrictControlFlowGuard="true" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="true" />
+    <Fonts DisableNonSystemFonts="true" AuditOnly="false" Audit="false" />
+    <ImageLoad BlockRemoteImageLoads="true" AuditRemoteImageLoads="false" BlockLowLabelImageLoads="true" AuditLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="true" AuditEnableExportAddressFilter="false" EnableExportAddressFilterPlus="true" AuditEnableExportAddressFilterPlus="false" EnableImportAddressFilter="true" AuditEnableImportAddressFilter="false" EnableRopStackPivot="true" AuditEnableRopStackPivot="false" EnableRopCallerCheck="true" AuditEnableRopCallerCheck="false" EnableRopSimExec="true" AuditEnableRopSimExec="false" />
     <SEHOP Enable="true" TelemetryOnly="false" />
     <Heap TerminateOnError="true" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="true" UserShadowStackStrictMode="true" AuditUserShadowStack="false" />
   </AppConfig>
-  <AppConfig Executable="PrintDialog.exe">
+</MitigationPolicy></code>
-    <ExtensionPoints DisableExtensionPoints="true" />
+====== Games ======
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="Gw2-64.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="runtimebroker.exe">
+  <AppConfig Executable="starwarssquadrons.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
-  </AppConfig>
-  <AppConfig Executable="SystemSettings.exe">
-    <ExtensionPoints DisableExtensionPoints="true" />
-  </AppConfig>
-  <AppConfig Executable="OculusDash.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 76: / Line 519: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="OVRServer_x64.exe">
+  <AppConfig Executable="D2R.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 93: / Line 536: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="OculusClient.exe">
+  <AppConfig Executable="Clone Hero.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 110: / Line 553: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="explorer.exe">
+  <AppConfig Executable="amtrucks.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 127: / Line 570: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="dwm.exe">
+  <AppConfig Executable="AoE2DE_s.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 144: / Line 587: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="starwarssquadrons.exe">
+  <AppConfig Executable="Beat Saber.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 178: / Line 621: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="pCARS3.exe">
+  <AppConfig Executable="DJMAX RESPECT V.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 195: / Line 638: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Gw2-64.exe">
+  <AppConfig Executable="ZFGameBrowser.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 212: / Line 655: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Game.exe">
+  <AppConfig Executable="dota2.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 229: / Line 672: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="DOOMEternalx64vk.exe">
+  <AppConfig Executable="Melvor Idle.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="pCARS3.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 280: / Line 740: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="amtrucks.exe">
+  <AppConfig Executable="AI.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 297: / Line 757: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Beat Saber.exe">
+  <AppConfig Executable="Crimsonland-D3D11.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 314: / Line 774: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Diablo III64.exe">
+  <AppConfig Executable="DOOMEternalx64vk.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="GTAIV.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 348: / Line 825: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Wow.exe">
+  <AppConfig Executable="TheForestVR.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 365: / Line 842: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="AoE2DE_s.exe">
+</MitigationPolicy></code>
+====== Oculus ======
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <AppConfig Executable="OculusClient.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 382: / Line 867: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="DJMAX RESPECT V.exe">
+  <AppConfig Executable="Home2.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 399: / Line 884: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="dota2.exe">
+  <AppConfig Executable="Home2-Win64-Shipping.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 416: / Line 901: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="ffxv_s.exe">
+  <AppConfig Executable="OVRRedir.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 433: / Line 918: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="HorizonZeroDawn.exe">
+  <AppConfig Executable="OVRServer_x64.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 450: / Line 935: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="MonsterHunterWorld.exe">
+  <AppConfig Executable="OVRServiceLauncher.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 467: / Line 952: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="TheForestVR.exe">
+  <AppConfig Executable="OculusSetup.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 484: / Line 969: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="AI.exe">
+  <AppConfig Executable="OVRLibrarian.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 501: / Line 986: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="Incursion-Win64-Shipping.exe">
+  <AppConfig Executable="OVRLibraryService.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 518: / Line 1003: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="vrcompositor.exe">
+  <AppConfig Executable="oculus-driver.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 535: / Line 1020: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
+  <AppConfig Executable="CompatToolCommandLine.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusCompatCheck.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OVRRedistributableInstaller.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusDebugTool.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="Fixer.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusVRCValidator.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusLogGatherer.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="CameraTool.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusMirror.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusDebugToolCLI.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="oculus-overlays.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="Dreamdeck.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="Dreamdeck-Win64-Shipping.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="TouchNUX.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="TouchNUX-Win64-Shipping.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="MontereySetup.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="MontereySetup-Win64-Shipping.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="OculusDash.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="oculus-platform-runtime.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="UnrealCEFSubProcess.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+</MitigationPolicy></code>
+====== SteamVR ======
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
   <AppConfig Executable="vrserver.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
@@ Line 552: / Line 1385: @@
     <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
   </AppConfig>
-  <AppConfig Executable="vrservice.exe">
+  <AppConfig Executable="vrmonitor.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="vrwebhelper.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="vrcompositor.exe">
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </AppConfig>
+  <AppConfig Executable="vrdashboard.exe">
     <DEP Enable="false" EmulateAtlThunks="false" />
     <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
@@ Line 570: / Line 1454: @@
   </AppConfig>
 </MitigationPolicy></code>
+====== System-wide ======
+<code>notepad++ %UserProfile%\Desktop\System-wide.xml</code>
+<code>Set-ProcessMitigation -PolicyFilePath "%UserProfile%\Desktop\System-wide.xml"</code>
+<code>
+<?xml version="1.0" encoding="UTF-8"?>
+<MitigationPolicy>
+  <SystemConfig>
+    <DEP Enable="false" EmulateAtlThunks="false" />
+    <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" />
+    <StrictHandle Enable="false" />
+    <SystemCalls DisableWin32kSystemCalls="false" />
+    <ExtensionPoints DisableExtensionPoints="false" />
+    <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" />
+    <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" />
+    <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" />
+    <Fonts DisableNonSystemFonts="false" AuditOnly="false" />
+    <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" />
+    <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" />
+    <SEHOP Enable="false" TelemetryOnly="false" />
+    <Heap TerminateOnError="false" />
+    <ChildProcess DisallowChildProcessCreation="false" />
+    <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" />
+  </SystemConfig>
+</MitigationPolicy></code>