Documentation
Configuration
System Trust Policy

System Trust Policy Configuration

The system trust policy configuration is used to specify the system trust policy options for Avaritia stub.

Deny TestSign Mode

This feature is currently under development.

Do not allow the application to run if the Windows is running in the testsigning mode (opens in a new tab) in Windows.

  • Default: false
config.json
{
  "system_trust_policy": {
    "deny_testsigning_mode": false
  }
}

Require ASLR

This feature is currently under development.

Require the application to run under the Address Space Layout Randomization (ASLR) (opens in a new tab) enabled in both BIOS and Windows.

  • Default: false
config.json
{
  "system_trust_policy": {
    "require_aslr": false
  }
}

Require NX Bit

This feature is currently under development.

Require the application to run under the No-eXecute (NX) Bit (opens in a new tab) enabled in BIOS.

  • Default: false
config.json
{
  "system_trust_policy": {
    "require_nxbit": false
  }
}

Require DEP

This feature is currently under development.

Require the application to run under the Data Execution Prevention (DEP) (opens in a new tab) enabled in both BIOS and Windows.

  • Default: false
config.json
{
  "system_trust_policy": {
    "require_dep": false
  }
}

Require Microsoft Driver Blocklist

This feature is currently under development.

Require the application to run under the Microsoft Driver Blocklist (opens in a new tab) enabled in Windows.

  • Default: false
config.json
{
  "system_trust_policy": {
    "require_windows11_microsoft_driver_blocklist_enabled": false
  }
}

Require Secure Boot

This feature is currently under development.

Require the application to run under the Secure Boot (opens in a new tab) enabled in BIOS.

  • Default: false
config.json
{
  "system_trust_policy": {
    "require_windows11_secure_boot": false
  }
}

Require TPM 2.0

This feature is currently under development.

Require the application to run under the Trusted Platform Module (TPM) (opens in a new tab) enabled in BIOS.

  • Default: false
config.json
{
  "system_trust_policy": {
    "require_windows11_tpm": false
  }
}

Require VBS

This feature is currently under development.

Require the application to run under the Virtualization-Based Security (VBS) (opens in a new tab) enabled in Windows.

  • Default: false
config.json
{
  "system_trust_policy": {
    "require_windows11_vbs": false
  }
}
© 2024-present SECTOR 501 LLC. All rights reserved.
Buildbff736e