McAfee Application Control is a security solution which implements the protection mechanism "application whitelisting". It basically creates a whitelist of installed and allowed applications and prevents the execution of new (unwanted and possibly malicious) applications afterwards.
I researched bypass techniques already in 2013 for the Kiras project in Austria (smart meter security), but could publish my results just two years later.
My research decribes various ways to bypass McAfee Application Control and Microsoft AppLocker. Most of these techniques can also be used to bypass similar products like AppSense, Microsoft DeviceGuard and so on.
I must also mention that a lot more bypass techniques were found in the last years. Most of these techniques were especially found by Casey Smith (@subTee), Oddvar Moe (@Oddvarmoe) and Matt Graeber (@mattifestation). They did an excellent job! A good summary of all these techniques can be found here: LOLBAS
Slides of my talk
English recorded talk
German recorded talk
Great insights in this post,! As cybersecurity threats continue to rise across the U.S.,
AntwortenLöschenespecially with more people working remotely,
it's never been more important to have strong antivirus protection in place.
We've seen a lot of users get overwhelmed by the number of options out there — especially when it comes to choosing between
free tools and paid antivirus solutions that offer real-time protection, firewall support, and identity theft monitoring.
If it’s helpful, we recently put together a free U.S.-based guide on how to choose the right antivirus software in 2025 —
it covers the key features to look for and the biggest mistakes to avoid. Feel free to check it out here:
👉 www.systemblogs.com , or you can directly call our costumer support number +1-770-7288-733
Appreciate the great content — looking forward to reading more!