Jump to content

Eset Issue Using Windows Defender Application Guard


Recommended Posts

I upgraded to Win 10 Pro yesterday and playing with its additional security features. I set up Windows Defender Application Guard (WDAG) and installed its extension in FireFox.

I opened an Edge WDAG virtualized window from Firefox and navigated to the Iranian web site shown here: https://forum.eset.com/topic/29021-threat-htmlscrinjectb-trojan/#elControls_136135_menu  known to be malicious and blocked by Eset in normal Firefox mode. The site opened w/o issue in Edge WDAC session window.

Appears Eset's Internet Protection is totally non-functional in the Edge WDAG virtual container. I also assume Eset can't filter any Internet traffic from the vEthernet network connection WDAG uses.  

Edited by itman
Link to comment
Share on other sites

I guess its academic if Eset works or not in a WDAG browser session. If WDAG settings are left at default, anything downloaded is dropped in the virtual container and flushed when the WDAG browser session is closed. On the other hand, you could still fall victim to a phishing spoof or the like since your only protection in that and other like browser malicious activities is Win SmartScreen.

-EDIT- Of note is one big reason for using WDAG is to protect MS Office apps as shown here: https://github.com/MicrosoftDocs/microsoft-365-docs/blob/public/microsoft-365/security/office-365-security/install-app-guard.md . The article notes that Defender Endpoint works with WDAG and it appears it is the only AV solution that does.

Edited by itman
Link to comment
Share on other sites

  • itman changed the title to Eset Issue Using Windows Defender Application Guard
Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...