From 2516ee53e365e04b5ba3a7fd0491cd0d0548aa8e Mon Sep 17 00:00:00 2001 From: HotCakeX Date: Wed, 4 Oct 2023 15:04:37 +0100 Subject: [PATCH 1/2] Update Registry.csv --- Payload/Registry.csv | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Payload/Registry.csv b/Payload/Registry.csv index 1addf16c7..2f297c329 100644 --- a/Payload/Registry.csv +++ b/Payload/Registry.csv @@ -35,7 +35,7 @@ Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,EncryptedClientHelloEnabled,1,DWORD, Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,WebRtcLocalhostIpHandling,default_public_interface_only,String,Delete,Allow public interface over http default route. This doesn't expose the local IP address when using WebRTC Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,SSLErrorOverrideAllowed,0,DWORD,Delete,Prevents users from proceeding from the HTTPS warning page Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,BasicAuthOverHttpEnabled,0,DWORD,AddOrModify,Block Basic authentication for HTTP -Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,WebRtcRespectOsRoutingTableEnabled,1,DWORD,AddOrModify,WebRTC will respect the Windows OS routing table rules when making peer to peer connections +Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,WebRtcRespectOsRoutingTableEnabled,0,DWORD,AddOrModify,Causes problem with Discord Voice Chat in Edge browser - Leads to no route error - when you are using VPN like Mullvad that has tight kill switch feature Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,RendererAppContainerEnabled,1,DWORD,AddOrModify,Launches Renderer processes into an App Container for additional security benefits Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,PDFSecureMode,1,DWORD,Delete,Secure mode and Certificate-based Digital Signature validation in native PDF reader Edge,HKLM:\SOFTWARE\Policies\Microsoft\Edge,ExperimentationAndConfigurationServiceControl,2,DWORD,AddOrModify,Allow devices using Edge category of the hardening script to receive new features and experimentations like normal devices From c803f8b25e746626fa50ffa9a14ce2c512653241 Mon Sep 17 00:00:00 2001 From: HotCakeX Date: Wed, 4 Oct 2023 18:29:12 +0100 Subject: [PATCH 2/2] Update README.md --- README.md | 1 - 1 file changed, 1 deletion(-) diff --git a/README.md b/README.md index f9e99e2c0..0085880e5 100644 --- a/README.md +++ b/README.md @@ -970,7 +970,6 @@ In Windows by default, devices will scan daily, automatically download and insta - Rotating pink checkmark denoting registry or cmdlet [Automatic HTTPS upgrade of HTTP connections](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#configure-automatic-https) - Rotating pink checkmark denoting registry or cmdlet [Enable Encrypted Client Hello](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#encryptedclienthelloenabled) - Rotating pink checkmark denoting registry or cmdlet[Disable Basic HTTP authentication scheme](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#basicauthoverhttpenabled) -- Rotating pink checkmark denoting registry or cmdlet[Force WebRTC respect the Windows OS routing table rules when making P2P connections](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#enable-support-for-windows-os-routing-table-rules-when-making-peer-to-peer-connections-via-webrtc) - Rotating pink checkmark denoting registry or cmdlet[Launch Renderer processes into an App Container for additional security benefits](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#enable-renderer-in-app-container) - Rotating pink checkmark denoting registry or cmdlet[Allow devices using this hardening category to receive new features and experimentations like normal devices](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#control-communication-with-the-experimentation-and-configuration-service) - Rotating pink checkmark denoting registry or cmdlet[Enforce the audio process to run sandboxed](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#allow-the-audio-sandbox-to-run)