Skip to content

Commit

Permalink
update releas page
Browse files Browse the repository at this point in the history
  • Loading branch information
@x86phil
x86phil committed May 16, 2024
1 parent 5bd3c61 commit f6bb55b
Show file tree
Hide file tree
Showing 18 changed files with 1,373 additions and 0 deletions.
8 changes: 8 additions & 0 deletions content/en/docs/wdac/_index.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
---
title: Windows Defender Application Control
linkTitle: WDAC
categories: [Examples, Placeholders]
tags: [test, docs]
description: >
**Windows Defender Application Control:** A short lead description about this section page. Text here can also be **bold** or _italic_ and can even be split over multiple paragraphs.
---
6 changes: 6 additions & 0 deletions content/en/docs/wdac/policy/_index.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
---
title: Policy
linkTitle: Policy
description: >
**Policy:** A short lead description about this section page. Text here can also be **bold** or _italic_ and can even be split over multiple paragraphs.
---
49 changes: 49 additions & 0 deletions content/en/docs/wdac/policy/base_policy_id.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,49 @@
---
weight: 20
title: BasePolicyID
categories: [Examples]
tags: [test, sample, docs]
description: >
**BasePolicyID:** This element consists of a list of Extended Key Usages (EKUs) that can be applied to signers.
---


This element consists of a list of Extended Key Usages (EKUs) that can be applied to signers. When incorporated into a signer rule, the EKU specified in the certificate must match that in the certificate used for signing. Each EKU instance possesses a "Value" attribute, comprising an encoded OID. For instance, to mandate WHQL signing, the "Windows Hardware Driver Verification" EKU (1.3.6.1.4.1.311.10.3.5) must be assigned to those drivers. The encoded "Value" attribute would be "010A2B0601040182370A0305" (where the first byte, typically 0x06 for absolute OID, is replaced with 0x01). The process of OID encoding is detailed here. ConvertTo-CIPolicy decodes and resolves the original FriendlyName attribute for encoded OID values.


> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
```xsd
<xs:element name="SiPolicy">
[...]
<xs:element name="BasePolicyID" type="GuidType" minOccurs="0" maxOccurs="1" />
[...]
</xs:element>
```

```xsd
<!-- A {00000000-0000-0000-0000-000000000000} GUID type -->
<xs:simpleType name="GuidType">
<xs:restriction base="xs:string">
<xs:pattern
value="\{[a-fA-F0-9]{8}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{12}\}" />
</xs:restriction>
</xs:simpleType>
```



example
```xml
<EKUs>
<EKU ID="ID_EKU_A_1" Value="010A2B0601040182374C0801" FriendlyName="1.3.6.1.4.1.311.76.8.1" />
</EKUs>
```

## First Header

This is a normal paragraph following a header. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong.
69 changes: 69 additions & 0 deletions content/en/docs/wdac/policy/cipolicy_xsd.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,69 @@
---
weight: 10
title: General Layout
categories: [Examples]
tags: [test, sample, docs]
description: >
**General Policy Layout:** A policy relevant to WDAC (Windows Defender Application Control) is defined within an XML file. To understand the policy considered by WDAC, you can examine the policy XML schema stored in the _cipolicy.xsd_ file at _C:\Windows\schemas\CodeIntegrity\\_.
---

A policy relevant to WDAC (Windows Defender Application Control) is defined within an XML file. To understand the policy considered by WDAC, you can examine the policy XML schema stored in the _cipolicy.xsd_ file at _C:\Windows\schemas\CodeIntegrity\\_. This schema, describes the structure, constraints, and data types of a WDAC XML policy files. It defines the elements and attributes that can appear in an policy file, their order, relationships, and any restrictions or rules that apply to them.

> The following provides an overview of the basic elements and attributes within the _SiPolicy_ element. In each policy file, _SiPolicy_ serves as the root element, signifying its role as the highest-level element that encapsulates all other elements and attributes within the file.
```xsd
<xs:element name="SiPolicy">
<xs:complexType>
<xs:all>
<xs:element name="VersionEx" type="VersionExType" minOccurs="1" maxOccurs="1" />
<xs:element name="PolicyTypeID" type="GuidType" minOccurs="0" maxOccurs="1" />
<xs:element name="PlatformID" type="GuidType" minOccurs="1" maxOccurs="1" />
<xs:element name="PolicyID" type="GuidType" minOccurs="0" maxOccurs="1" />
<xs:element name="BasePolicyID" type="GuidType" minOccurs="0" maxOccurs="1" />
<xs:element name="Rules">
<xs:complexType>
<xs:sequence>
<xs:element name="Rule" type="RuleType" minOccurs="0" maxOccurs="65535" />
</xs:sequence>
</xs:complexType>
</xs:element>
<xs:element ref="EKUs" minOccurs="0" maxOccurs="1" />
<xs:element ref="FileRules" minOccurs="0" maxOccurs="1" />
<xs:element ref="Signers" minOccurs="0" maxOccurs="1" />
<xs:element ref="SigningScenarios" minOccurs="0" maxOccurs="1" />
<xs:element ref="UpdatePolicySigners" minOccurs="0" maxOccurs="1" />
<xs:element ref="CiSigners" minOccurs="0" maxOccurs="1" />
<xs:element name="HvciOptions" type="DWordType" minOccurs="0" maxOccurs="1" />
<xs:element ref="Settings" minOccurs="0" maxOccurs="1" />
<xs:element ref="Macros" minOccurs="0" maxOccurs="1" />
<xs:element ref="SupplementalPolicySigners" minOccurs="0" maxOccurs="1" />
</xs:all>
<xs:attribute name="FriendlyName" type="xs:string" use="optional" />
<xs:attribute name="PolicyType" type="PolicyType" use="optional" />
</xs:complexType>
</xs:element>
```
**Code Block 1:** _SiPolicy_ elements and attributes
> Table 1 presents the names of the elements and attributes within _SiPolicy_ as well as a brief description of their core functionalities.
| Name | Description |
| :--------: | :---------------: |
| VersionEx | ... |
| PolicyTypeID | ... |
| PlatformID | ... |
| PolicyID | ... |
| BasePolicyID | ... |
| Rules | ... |
| EKUs | This element consists of a list of Extended Key Usages (EKUs) that can be applied to signers. When incorporated into a signer rule, the EKU specified in the certificate must match that in the certificate used for signing. Each EKU instance possesses a "Value" attribute, comprising an encoded OID. For instance, to mandate WHQL signing, the "Windows Hardware Driver Verification" EKU (1.3.6.1.4.1.311.10.3.5) must be assigned to those drivers. The encoded "Value" attribute would be "010A2B0601040182370A0305" (where the first byte, typically 0x06 for absolute OID, is replaced with 0x01). The process of OID encoding is detailed here. ConvertTo-CIPolicy decodes and resolves the original FriendlyName attribute for encoded OID values. |
| FileRules | ... |
| Signers | This element encompasses all signing certificates to be utilized in the rules outlined in the _SigningScenarios_ segment. Each signer entry mandates a CertRoot property, wherein the Value attribute denotes the hash of the cbData blob of the certificate. The hashing algorithm employed aligns with the algorithm specified in the certificate. This hash functions as a distinctive identifier for the certificate. |
| SigningScenarios | ... |
| UpdatePolicySigners | ... |
| HvciOptions | ... |
| Settings | ... |
| Macros | ... |
| SupplementalPolicySigners | ... |
| ... | ... |
| ... | ... |
{.table-bordered}
**Table 1:** Names of the elements and attributes and brief description
91 changes: 91 additions & 0 deletions content/en/docs/wdac/policy/ekus.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,91 @@
---
weight: 20
title: EKUs
categories: [Examples]
tags: [test, sample, docs]
description: >
**EKUs:** This element consists of a list of Extended Key Usages (EKUs) that can be applied to signers.
---

This element consists of a list of Extended Key Usages (EKUs) that can be applied to signers. When incorporated into a signer rule, the EKU specified in the certificate must match that in the certificate used for signing. Each EKU instance possesses a "Value" attribute, comprising an encoded OID. For instance, to mandate WHQL signing, the "Windows Hardware Driver Verification" EKU (1.3.6.1.4.1.311.10.3.5) must be assigned to those drivers. The encoded "Value" attribute would be "010A2B0601040182370A0305" (where the first byte, typically 0x06 for absolute OID, is replaced with 0x01). The process of OID encoding is detailed here. ConvertTo-CIPolicy decodes and resolves the original FriendlyName attribute for encoded OID values.


> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
```xsd
<xs:element name="EKUs">
<xs:annotation>
<xs:documentation> Collection of EKUs. </xs:documentation>
</xs:annotation>
<xs:complexType>
<xs:choice minOccurs="1" maxOccurs="255">
<xs:element ref="EKU" minOccurs="0" maxOccurs="255" />
</xs:choice>
</xs:complexType>
</xs:element>
```

> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
```xsd
<xs:element name="EKU">
<xs:annotation>
<xs:documentation> Define an EKU </xs:documentation>
</xs:annotation>
<xs:complexType>
<xs:attribute name="ID" type="EKUType" use="required" />
<xs:attribute name="Value" type="xs:hexBinary" use="required" />
<xs:attribute name="FriendlyName" type="xs:string" use="optional" />
</xs:complexType>
</xs:element>
```
> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
```xsd
<xs:simpleType name="EKUType">
<xs:annotation>
<xs:documentation> EKU ID type starts with ID_EKU_ </xs:documentation>
</xs:annotation>
<xs:restriction base="xs:string">
<xs:pattern value="ID_EKU_[A-Z][_A-Z0-9]*" />
<xs:minLength value="1" />
</xs:restriction>
</xs:simpleType>
```

> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
example
```xml
<EKUs>
<EKU ID="ID_EKU_A_1" Value="010A2B0601040182374C0801" FriendlyName="1.3.6.1.4.1.311.76.8.1" />
</EKUs>
```









## First Header

This is a normal paragraph following a header. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong.
91 changes: 91 additions & 0 deletions content/en/docs/wdac/policy/file_rules.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,91 @@
---
weight: 20
title: FileRules
categories: [Examples]
tags: [test, sample, docs]
description: >
**FileRules:** This element consists of a list of Extended Key Usages (EKUs) that can be applied to signers.
---

This element consists of a list of Extended Key Usages (EKUs) that can be applied to signers. When incorporated into a signer rule, the EKU specified in the certificate must match that in the certificate used for signing. Each EKU instance possesses a "Value" attribute, comprising an encoded OID. For instance, to mandate WHQL signing, the "Windows Hardware Driver Verification" EKU (1.3.6.1.4.1.311.10.3.5) must be assigned to those drivers. The encoded "Value" attribute would be "010A2B0601040182370A0305" (where the first byte, typically 0x06 for absolute OID, is replaced with 0x01). The process of OID encoding is detailed here. ConvertTo-CIPolicy decodes and resolves the original FriendlyName attribute for encoded OID values.


> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
```xsd
<xs:element name="EKUs">
<xs:annotation>
<xs:documentation> Collection of EKUs. </xs:documentation>
</xs:annotation>
<xs:complexType>
<xs:choice minOccurs="1" maxOccurs="255">
<xs:element ref="EKU" minOccurs="0" maxOccurs="255" />
</xs:choice>
</xs:complexType>
</xs:element>
```

> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
```xsd
<xs:element name="EKU">
<xs:annotation>
<xs:documentation> Define an EKU </xs:documentation>
</xs:annotation>
<xs:complexType>
<xs:attribute name="ID" type="EKUType" use="required" />
<xs:attribute name="Value" type="xs:hexBinary" use="required" />
<xs:attribute name="FriendlyName" type="xs:string" use="optional" />
</xs:complexType>
</xs:element>
```
> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
```xsd
<xs:simpleType name="EKUType">
<xs:annotation>
<xs:documentation> EKU ID type starts with ID_EKU_ </xs:documentation>
</xs:annotation>
<xs:restriction base="xs:string">
<xs:pattern value="ID_EKU_[A-Z][_A-Z0-9]*" />
<xs:minLength value="1" />
</xs:restriction>
</xs:simpleType>
```

> There should be no margin above this first sentence.
>
> Blockquotes should be a lighter gray with a border along the left side in the secondary color.
>
> There should be no margin below this final sentence.
example
```xml
<EKUs>
<EKU ID="ID_EKU_A_1" Value="010A2B0601040182374C0801" FriendlyName="1.3.6.1.4.1.311.76.8.1" />
</EKUs>
```









## First Header

This is a normal paragraph following a header. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong. Bacon ipsum dolor sit amet t-bone doner shank drumstick, pork belly porchetta chuck sausage brisket ham hock rump pig. Chuck kielbasa leberkas, pork bresaola ham hock filet mignon cow shoulder short ribs biltong.
Loading

0 comments on commit f6bb55b

Please sign in to comment.