Default Protections for Internet Explorer

Apply recommended EMET protections to Internet Explorer


Supported on: Windows 10
Enable policy:
Registry HiveHKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
Registry PathSoftware\Policies\Microsoft\EMET\Defaults
Value Name*\Internet Explorer\iexplore.exe
Value TypeREG_SZ
Value+EAF+ eaf_modules:mshtml.dll;flash*.ocx;jscript*.dll;vbscript.dll;vgx.dll +ASR asr_modules:npjpi*.dll;jp2iexp.dll;vgx.dll;msxml4*.dll;wshom.ocx;scrrun.dll;vbscript.dll asr_zones:1;2
Disable Policy:
Registry HiveHKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
Registry PathSoftware\Policies\Microsoft\EMET\Defaults
Value Name*\Internet Explorer\iexplore.exe
Value TypeREG_DWORD
Value

Included products and mitigations:

- Microsoft Internet Explorer - all default mitigations and EAF+, and ASR blocking numerous risky modules except in the Intranet and Trusted Sites zones


emet.admx