In the Web Console, you can manage Exploit Prevention settings in the policy properties (Application settings → Host Threat Protection → Behavior Analysis → Exploit Prevention).