Credential Guard in non Enterprise version of Windows 10

[Kriz]

Hi

I was browsing group policy editor and I have stumbled upon Windows Defender Credential Guard. I was faintly aware of this feature but I didn't know it was present in Pro version of Windows. I have enabled it and lo and behold it appeared under Core Isolation sub menu. Sadly my skills are insufficient to verify weather it's actually work. The way I understand it it protects admin credentials by encrypting them so if malware exploited some system level app it couldn't use those credentials cause there is an extra verification step before access is granted. I don't know how useful it is in a home environment but it would be good to know that it;s there.

Can someone shine some light on the subject pretty please.

Thanks in advance.

[OddOod]

IIRC this is a defense against Mimikatz. You could download metasploit and see if mimi works

[Kriz]

Is there some guide out there to follow cause like I said I currently lack the know how to verify if this exploit is patched by Credential Guard. It's not like there is a handy simple gui with the metasploit framework.

 

Ps, I did some more research and it seams Credential Guard protects your doman credentials so not very useful for workgroup/home users. I was curious why such a feature would be exclusive for Enterprise and that explains a lot.