PowerShell Protect

Audit and block PowerShell scripts on Windows


Default Blocking

Block suspicious behavior without having to configure PowerShell Protect at all.

Custom Blocking

Block scripts based on rules defined with the PowerShell Protect configuration system.

Audit

Audit script activity with HTTP, TCP, UDP, and files.

Format

Format audit output to easily integrate with your SIEM.

Deploy XML

Deploy PowerShell Protect configurations as a single XML document via Group Policy or the file system.

Simple Install

Install the PowerShell Protect AMSI provider with a single PowerShell command.