My coworkers and I have recently started implementing AppLocker on our Terminal Servers to further lock them down from rouge apps. Does anyone have knowledge of what Microsoft considers an "executable" when applying the AppLocker policy to folders? My AV program considers 2 dozen different extensions as executables when scanning them for malicious activity for instance.
From what I understand of other posts here rouge apps run not only as .exe but .msi, .js and others.
Thanks for the insight.