Microsoft launches EMET 5.5 Beta with Windows 10 support

Martin Brinkmann
Dec 20, 2015
Updated • Jul 5, 2017
Security, Windows 10
|
7

Microsoft EMET 5.5 Beta, the Enhanced Mitigation Experience Toolkit created by Microsoft, is now available for download for all supported operating systems.

The program, designed to mitigate exploits that slipped by system defenses, has been designed as a security tool that blocks exploits from being carried out successfully on machines running Windows.

While EMET offers by no means 100% protection against all sorts of exploits -- researchers have shown in the past that it is possible to bypass some or even all of EMET's anti-exploit measures -- it is quite useful generally speaking as the majority of malicious software has not been designed to bypass EMET or other anti-exploit software such as Malwarebytes Anti-Exploit.

Microsoft EMET 5.5 Beta

Update: Microsoft EMET 5.5 final has been released in the meantime.

The main Enhanced Mitigation Experience Toolkit website over on Microsoft's Technet site links to the latest stable version of EMET -- currently version 5.2 -- and the latest beta download that Microsoft released yesterday.

microsoft emet 5.5 beta

Probably the biggest change in EMET 5.5 is (official) support for Microsoft's new operating system Windows 10. While EMET 5.2 ran fine on Windows 10, it never supported the operating system officially and this changes with the new release.

When you run the Beta version of EMET after installation you will notice another change right away, provided that you run Windows 10 and not an earlier version of Windows.

The main interface lists the new "Block Untrusted Fonts" option which is set to audit by default. This is a Windows-10 specific feature that is not supported on previous versions of Windows.

Windows 10 ships with settings to block untrusted fonts. The feature is not enabled by default, and can be set to on or audit if desired.

On prevents any font from being loaded that is not in the Fonts directory of the Windows installation, while audit writes untrusted font events to the log but won't block access to them. There is also an option to exclude apps so that they can load untrusted fonts regardless of the global preference.

Configuring untrusted fonts blocking in Windows 10

  1. Tap on the Windows-key, type regedit and hit enter.
  2. Confirm the UAC prompt if it is displayed.
  3. Navigate to the key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\.
  4. Right-click on "Kernel" and create the QWORD (64-bit) Value preference MitigationOptions if it does not exist.
  5. To turn untrusted font blocking on, set the value to 1000000000000.
  6. To turn it off again, set it to 2000000000000 or delete MitigationOptions.
  7. To set the feature to audit, set the value to 3000000000000.

Please note that you need to add existing mitigation values to the number. For instance, if MitigationOptions exists already on your system and is set to a value of 1000, you need to add 1000 to the value, e.g. 1000000001000 when turning the untrusted font blocking feature on.

Other EMET 5.5 improvements

The new EMET version ships with a handful of additional improvements:

  • Better configuration of various mitigations via GPO.
  • EAF/EAF+ pseudo-mitigation performance improvements.
  • Bug fixes.

Microsoft notes that EMET 5.5 mitigations do not apply to the company's own Edge browser on Windows 10 due to " the advanced technologies used to protect Microsoft Edge, including industry leading sandboxing, compiler, and memory management techniques".

Now Read: Microsoft Enhanced Mitigation Experience Toolkit Tips

Summary
Microsoft launches EMET 5.5 Beta with Windows 10 support
Article Name
Microsoft launches EMET 5.5 Beta with Windows 10 support
Description
Microsoft released EMET 5.5 Beta, a new version of the Enhanced Mitigation Experience Toolkit. It adds Windows 10 support among other things.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Tutorials & Tips


Previous Post: «
Next Post: «

Comments

  1. Chris said on January 1, 2023 at 10:32 am
    Reply

    Possibly the first useful article from Shaun?

    1. Chris said on January 1, 2023 at 2:23 pm
      Reply

      Many previous articles have described how to install an earlier version of Windows, right back to Windows 7, using a download from the MS website.

      What is perhaps significant here is that there is seemingly no barrier to installing Windows 10 on a brand new computer shipped with Windows 11: no block set by MS if one could be set.

      The first screenshot does, though, show an image that include a reference to the need for a Windows 10 licence: maybe not reflecting the current situation, or maybe the licence is deemed the same?

  2. The Kentucky Tech said on January 1, 2023 at 11:04 am
    Reply

    I have tried win10/11 .. I like the new win11 UI, BUT everything’s in the wrong spot. It should be like windows 7, with the UI of 11. You know how a man can have the most beautiful woman ever, and mess it all up, and wake up and she’s GONE!? Well this very thing MicroSoft has done to windows.
    Windows 7, WOW she’s a sexy doll. And MicroSoft turns right around and mess’s everything up.
    I know a lot of people online, and they are leaving win10/11 and going back to 7. They say
    ” I don’t care if Microsoft don’t support windows 7 any more, I’m going to use it”

  3. Chris said on January 1, 2023 at 11:59 am
    Reply

    Am I right that a clean W10 install would wipe the partition on which it is installed?

    That would remove all ‘bloatware’ but also any possibly useful device manufacturer’s utilities, so anything wanted would have to be backed up in some way before going ahead?

  4. John G. said on January 1, 2023 at 12:41 pm
    Reply

    Best useful article of 2023 just the first day. Thanks @Shaun, keep going on!

  5. John said on January 1, 2023 at 2:48 pm
    Reply

    It would also probably wipe your OEM partitions as well FYI. In case you decided you wanted to actually go back to Windows 11. Although you could also make a Windows 11 install with the Microsoft creator tool for Win 11. I like both Win 10 & 11 I have no issues with either OS. On a new PC especially some CPU’s with the Intel P& E cores Windows 11 works better with those new CPU’s.

  6. Someone said on January 1, 2023 at 5:39 pm
    Reply

    Happy new year. But why to go on windows 11 ? Wait for that, we have almost 3 years to the retirement of win 10 on 2025. Wait and see. If microsoft continues to destroy their os, we have to stay on older versions.

  7. VioletMoon said on January 1, 2023 at 8:10 pm
    Reply

    Note: “Only the Professional versions of Windows desktop operating systems include downgrade rights.”

    It not quite so simple.

    Before attempting a downgrade, I would recommend reading more about “downgrade” rights. Not all OEM licenses from manufacturers will allow the process.

    In theory, though, the embedded license is interchangeable. Back to Windows 10 with an ISO, forward to Windows 11 with an ISO at some future date. Like downgrading is going to solve all of one’s problems . . . .

    Is Windows 11 THAT bad? Not having issues here; it would be a pointless exercise unless one had an essential program that didn’t run on Windows 11, which would be next to impossible.

    A number of factors could be involved that wouldn’t result in a Blue Screen Boot.

    Don’t know–drivers, BIOS?. Rather spend time on learning the new system and dealing with difficulties as as they present themselves.

    Wouldn’t go there; it’s like upgrading to Windows 11 on a computer that isn’t supported. Possible, but why would one do it?

    More screenshots for the courageous with lots of time on their hands:

    https://pureinfotech.com/downgrade-windows-11-10/

    Move forward.

  8. GoodMeasure said on January 1, 2023 at 8:49 pm
    Reply

    Thanks for this article.

    As the method in this article would wipe/remove user data on the PC, could we also have an article to restore a Windows PC back to Windows 10 while RETAINING data after a user has accidentally updated to Window 11? Forgive me if that has already been posted or I am misunderstanding this.

    Also, I suppose it may be useful to make it even clearer that the article is about totally starting over and losing any data on the PC. Yes, it does say it in the article, but… just to be safe in case someone is reading it fast.

    1. Chris said on January 1, 2023 at 11:05 pm
      Reply

      >As the method in this article would wipe/remove user data on the PC, could we also have an article to restore a Windows PC back to Windows 10 while RETAINING data after a user has accidentally updated to Window 11?

      If a user inadvertently accepts a MS offer to upgrade their Windows version from 10 to 11, or accepts an offer and then regrets having done so, I think that we can assume that *only* Windows itself will be been updated: the disk will not have been wiped, and any user, OEM or other data or partition will be completely unchanged.

      However, if a user plans to use the above method to replace Windows 11 by Windows 10, they would be very well advised, in accordance with normal advice, to image their complete drive before before starting, to enable anything that might be required later to be reinstalled..

  9. Microdumbos said on January 2, 2023 at 2:23 am
    Reply

    One does not desire Windows 11. It’s becoming obvious that Microsoft is making an incredibly vain effort to make Windows 11 seem successful. Even while Windows 10 is still fully supported, they stopped licensing OEMs with the ability to downgrade to Windows 10 in October of last year. Consequently, Windows 11 is installed on all recently purchased machines. Because we remove the Windows 11 image and replace it with our Windows 10 image, this is not a major issue. Microsoft place their horrible Windows 11 where the sun doesn’t shine.

  10. sal said on January 7, 2023 at 11:40 am
    Reply

    This site has become a mass advertisement of windows 11! Daily promotional articles for this OS! Why don’t you post an article about AtlasOS?! Oh yeah, you’re going to delete my opinion again – you’re censoring people’s free expression!

  11. PleaseStahp said on August 17, 2023 at 10:10 pm
    Reply

    Whether one likes Windows 10 or Windows 11, the point not-to-be-missed here is that Microsoft is working really hard to make Windows a platform for monetized SaaS. Microsoft accounts (preferably with upgraded OneDrive storage), Microsoft 365, etc. etc.

    I would absolutely go back to the days of paying Microsoft $80-100, or even $129.99 if they would offer an ad-free, telemetry-free Windows Pro OS that also doesn’t strip the Pro features in order to treat me like a consumer user. And since they will not? I feel perfectly justified in using the Windows Registry, Local Policies, and firewall-PiHole blocking techniques, whatever it takes, to block, strip, or blackhole the ads from their operating system. I already have half a dozen Windows 11 Pro licenses with matching Office 2021 Professional Plus licenses that indicate I’m willing to pay them. I just want them to leave me in peace.

    1. bruh said on September 11, 2023 at 6:13 pm
      Reply

      Foolish, you’re basically saying “I am going to keep giving you money despite the sub-par user experience and product you provide, BUT it would be nice if you improved your product anyway”.

      That doesn’t work in the real world – Microsoft is acting like this because they simply don’t care about the OS space, they have decided to milk the end users as much as possible.

      Use Microsoft products only as much as you are required to, by your workplace, or your clients. Run windows 10/11 in a VM environment and find alternatives where possible. Microsoft’s behaviour in the past how many years has signaled that they are only gonna get worse.

  12. tenderdivergent said on August 21, 2023 at 5:58 pm
    Reply

    Windows’ “System Image” backup feature has been broken for almost a decade. The only backup software I’ve used that has been able to integrate properly with windows 10 has been Macrium (native windows volume shadow copies, incrementals, easy recovery environment creation, encryption, etc).

  13. qq said on August 22, 2023 at 10:55 am
    Reply

    Comments are messed up, again. Ghacks isn’t what it used to be…

  14. JoeNYWF64 said on August 23, 2023 at 2:48 pm
    Reply

    I heard microsoft is working on windows 12 – should i wait for that? When would THAT be released? I have 3!! incompatible win 10 desktops.
    I wonder EXACTLY how many laptops & desktops do NOT meet win 11 requirements!
    In the hundreds of millions? Close to a billion?! Imagine how many would need to be recycled(or thrown away in countries not recycling), not necessarily using green power to do it. & to make new ones. My head is spinning.
    I sure hope at least win 11 is a lot faster than the sooo slow win 10 file manager & picture viewer.
    Windows XP was sooooo fast in those areas.
    Microsoft should have come out with some sort of inexpensive device or software that would EASILY MAKE incompatible win 10 pc’s compatible.

  15. Miguel said on September 2, 2023 at 9:44 pm
    Reply

    Is it only for me or are the commands for configuring VB for macOS all “cut up”? Like it’s literally a screenshot with half the command? I’ve tried multiple browsers what should I do lmao
    Thx in advance

    1. Robert said on September 9, 2023 at 4:09 pm
      Reply

      Same here! I wasn’t sure if the author of the article is trolling or not

  16. Brian said on September 24, 2023 at 12:53 pm
    Reply

    Sadly, this guide is completely useless as-is. The section headed “Enter the following commands, one by one, but adjust the name of the OS you gave it” shows a static JPG image.

    Not only can you not copy-paste the text, but worse, the lines have been truncated. It’s not possible to scroll it sideways to see the missing parts, since even the “scrollbar” is part of the static image!

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.