One of the Default Rules in AppLocker allows everyone to execute everything in the folder C:\Windows. The reasoning behind this must have been that a non-admin Windows-user should not have write permissions anywhere in that folder. But as it turns out that is not the case. Source: AppLocker Bypass Checker…

Read More