Skip to content

Commit

Permalink
Merge pull request #25 from jlaundry/automated-lsrules-update-1052278…
Browse files Browse the repository at this point in the history 
…4654

Automated lsrules update
  • Loading branch information
@jlaundry
jlaundry authored Aug 23, 2024
2 parents aa94047 + 4aaf2da commit 1230e0f
Showing 1 changed file with 71 additions and 12 deletions.
83 changes: 71 additions & 12 deletions macos/little_snitch/rules/Microsoft Defender.lsrules
View file
Original file line number Diff line number Diff line change
Expand Up @@ -302,13 +302,27 @@
"owner": "me",
"notes": "rule 2 - Defender Smart Screen hosts",
"remote-hosts": [
"wd-prod-ss.trafficmanager.net",
"wd-prod-ss-as-southeast-1-fe.southeastasia.cloudapp.azure.com",
"wd-prod-ss-as-southeast-2-fe.southeastasia.cloudapp.azure.com",
"wd-prod-ss-as-southeast-3-fe.southeastasia.cloudapp.azure.com",
"wd-prod-ss-as-southeast-4-fe.southeastasia.cloudapp.azure.com",
"wd-prod-ss-au-east-1-fe.australiaeast.cloudapp.azure.com",
"wd-prod-ss-au-southeast-1-fe.australiasoutheast.cloudapp.azure.com",
"wd-prod-ss-br-south-1-fe.brazilsouth.cloudapp.azure.com",
"wd-prod-ss-eu-north-1-fe.northeurope.cloudapp.azure.com",
"wd-prod-ss-eu-north-2-fe.northeurope.cloudapp.azure.com",
"wd-prod-ss-eu-west-1-fe.westeurope.cloudapp.azure.com",
"wd-prod-ss-eu-west-2-fe.westeurope.cloudapp.azure.com",
"wd-prod-ss-uk-south-1-fe.uksouth.cloudapp.azure.com",
"wd-prod-ss-uk-west-1-fe.ukwest.cloudapp.azure.com",
"wd-prod-ss-us-east-0-fe.eastus.cloudapp.azure.com",
"wd-prod-ss-us-east-1-fe.eastus.cloudapp.azure.com",
"wd-prod-ss-us-east-2-fe.eastus.cloudapp.azure.com",
"wd-prod-ss-us-northcentral-1-fe.northcentralus.cloudapp.azure.com",
"wd-prod-ss-us-northcentral-2-fe.northcentralus.cloudapp.azure.com",
"wd-prod-ss-us-southcentral-1-fe.southcentralus.cloudapp.azure.com",
"wd-prod-ss-us-southcentral-2-fe.southcentralus.cloudapp.azure.com",
"wd-prod-ss-us-east-0-fe.eastus.cloudapp.azure.com",
"wd-prod-ss-us-west-0-fe.westus.cloudapp.azure.com",
"wd-prod-ss-us-west-1-fe.westus.cloudapp.azure.com",
"wd-prod-ss-us-west-2-fe.westus.cloudapp.azure.com"
Expand All @@ -317,31 +331,76 @@
{
"action": "allow",
"ports": "443",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/Microsoft Defender.app/Contents/MacOS/Microsoft Defender",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/wdavdaemon",
"protocol": "tcp",
"owner": "me",
"notes": "rule 1 - Experimentation and Configuration Service",
"notes": "rule 3 - Defender Smart Screen hosts - US",
"remote-hosts": [
"ecs.office.com",
"config.edge.skype.com"
"unitedstates.smartscreen.microsoft.com",
"prod-atm-wds-e5-unitedstates2.trafficmanager.net",
"prod-agic-eu2-1.eastus2.cloudapp.azure.com",
"prod-agic-eu2-2.eastus2.cloudapp.azure.com",
"prod-agic-eu2-3.eastus2.cloudapp.azure.com",
"prod-agic-ncu-1.northcentralus.cloudapp.azure.com",
"prod-agic-ncu-2.northcentralus.cloudapp.azure.com",
"prod-agic-ncu-3.northcentralus.cloudapp.azure.com",
"prod-agic-scu-1.southcentralus.cloudapp.azure.com",
"prod-agic-scu-2.southcentralus.cloudapp.azure.com",
"prod-agic-scu-3.southcentralus.cloudapp.azure.com",
"prod-agic-wu-1.westus.cloudapp.azure.com",
"prod-agic-wu-2.westus.cloudapp.azure.com",
"prod-agic-wu-3.westus.cloudapp.azure.com",
"prod-agic-wu-3.westus.cloudapp.azure.com"
]
},
{
"action": "allow",
"ports": "443",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/Microsoft Defender.app/Contents/MacOS/Microsoft Defender",
"protocol": "udp",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/wdavdaemon",
"protocol": "tcp",
"owner": "me",
"notes": "rule 1 - Experimentation and Configuration Service",
"notes": "rule 4 - Defender Smart Screen hosts - EU",
"remote-hosts": [
"ecs.office.com",
"config.edge.skype.com"
"europe.smartscreen.microsoft.com",
"wd-prod-ss-eu.trafficmanager.net",
"wd-prod-ss-eu-north-1-fe.northeurope.cloudapp.azure.com",
"wd-prod-ss-eu-north-2-fe.northeurope.cloudapp.azure.com",
"wd-prod-ss-eu-west-1-fe.westeurope.cloudapp.azure.com",
"wd-prod-ss-eu-west-2-fe.westeurope.cloudapp.azure.com"
]
},
{
"action": "allow",
"ports": "443",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/wdavdaemon",
"protocol": "tcp",
"owner": "me",
"notes": "rule 5 - Defender Smart Screen hosts - UK",
"remote-hosts": [
"unitedkingdom.smartscreen.microsoft.com",
"wd-prod-ss-uk.trafficmanager.net",
"wd-prod-ss-uk-south-1-fe.uksouth.cloudapp.azure.com",
"wd-prod-ss-uk-west-1-fe.ukwest.cloudapp.azure.com"
]
},
{
"action": "allow",
"ports": "443",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/Microsoft Defender.app/Contents/MacOS/Microsoft Defender Helper",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/wdavdaemon",
"protocol": "tcp",
"owner": "me",
"notes": "rule 6 - Defender Smart Screen hosts - AU",
"remote-hosts": [
"australia.smartscreen.microsoft.com",
"wd-prod-ss-au.trafficmanager.net",
"wd-prod-ss-au-east-1-fe.australiaeast.cloudapp.azure.com",
"wd-prod-ss-au-southeast-1-fe.australiasoutheast.cloudapp.azure.com"
]
},
{
"action": "allow",
"ports": "443",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/Microsoft Defender.app/Contents/MacOS/Microsoft Defender",
"protocol": "tcp",
"owner": "me",
"notes": "rule 1 - Experimentation and Configuration Service",
Expand All @@ -353,7 +412,7 @@
{
"action": "allow",
"ports": "443",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/Microsoft Defender.app/Contents/MacOS/Microsoft Defender Helper",
"process": "/Applications/Microsoft Defender.app/Contents/MacOS/Microsoft Defender.app/Contents/MacOS/Microsoft Defender",
"protocol": "udp",
"owner": "me",
"notes": "rule 1 - Experimentation and Configuration Service",
Expand Down

0 comments on commit 1230e0f

Please sign in to comment.