Anti-Ransomware File System Resource Manager Lists using Power Shell Script

FSRM actively monitors your Windows Server shares and files and could alert you of any malicious activity you specify.

How-to Use

1. Installs FSRM using Power Shell or Server Manager
2. Run Power Shell Script as Administrator to update rawlist ransomware

Remove-FsrmFileGroup -name "Anti-Ransomware File Groups"
new-FsrmFileGroup -name "Anti-Ransomware File Groups" -IncludePattern @((Invoke-WebRequest -Uri "https://fsrm.experiant.ca/api/v1/get" -UseBasicParsing).content | convertfrom-json | % {$_.filters})

 3. Navigate to Server Manager => Tool => File Resource Manager will see Anti-Ransomware File Groups in File Group

4. File Screen Templates select file group to block : Anti-ransomware file group above

Screening type : Active screening

5. File Screen => Create File Screen
File Screen path: D:\
Screening type : Active screnning
Select file group to block: Anti-ransomware File Group

*** UPDATE RAWLIST RANSOMWARE

Rerun Script below and remmember change -name file group to avoid conflicts old file group

new-FsrmFileGroup -name "Anti-Ransomware File Groups 2 " -IncludePattern @((Invoke-WebRequest -Uri

"https://fsrm.experiant.ca/api/v1/get" -UseBasicParsing).content | convertfrom-json | % {$_.filters})

Video:

DONE

Reference:
https://github.com/nexxai/CryptoBlocker
Check script for windows server 2016: FSRM_NoCrypto_2016.ps1
https://github.com/davidande/FSRM-ANTICRYPTO
You will find what You need