The Big Technological Colossus microsoft, has announced the release of two new extensions to extend the capabilities of Windows Defender Application Guard (WDAG) to Google Chrome and Firefox. We recall that from the autumn of 2017, the well-known browser Microsoft Edge can support sandboxing functionality using this Microsoft integrated tool.
But what does WDAG do?
It isolates them browser sessions user from the rest of the machine and limits any malicious actions.
How is this achieved?
Whenever a user visits a site using the WDAG capabilities, the session is served in a Microsoft Hyper-V Cloud environment, isolated from the rest of the operating system.
You can see the system architecture in the image below:
WDAG capabilities can only be exploited in an environment Windows 10 Pro or Enterprise, and 1803 or higher.
Please install Windows Defender Application Guard by following these steps:
- Enable Windows Defender Application Guard: Open Control Panel, select Programs, then Windows Defender Application Guard and click OK. Alternatively you can "run" it Powershell with administrator rights and restart your computer after you use the following command:
Enable-WindowsOptionalFeature -online -FeatureName Windows-Defender-ApplicationGuard
- Install the app Windows Defender Application Guard Companion from the Microsoft Store.
- Install extension to Google Chrome ή Mozilla Firefox.
- Restart the computer.
Use the extension
If the installation is successful, open it browser you will see something similar to the following picture:
You can disable the default diagnostic data collection by selecting the extension and then deactivating the relevant setting.
WDAG enables users or managers - business cases - to define a list of allowed sites that are considered safe. So if you visit a website (using Google Chrome, Mozilla Firefox or Microsoft Edge) that is not included in this list, the system will prompt you to open an isolated Edge browser session to protect you (the redirection is currently only supported on Microsoft Edge).
Η microsoft intends to further develop the above feature where when the user visits a "trusted" site within an isolated Edge session, it will be redirected back to the default browser.
You can find more information about Windows Defender Application Guard on Microsoft official site.