On the command line, you can manage Exploit Prevention using the UseAEP and AEPMode settings of the Behavior Detection (Behavior_Detection) predefined task.
You can configure Exploit Prevention by editing the settings of the Behavior Detection predefined task.
The UseAEP setting accepts the following values:
Yes enables Exploit Prevention.No (default) disables Exploit Prevention.The AEPMode setting accepts the following values:
Block (default), malicious activity of the exploit is blocked and an event is logged.Notify, the activity of the exploit is not blocked, only information about the exploit being detected is recorded in the event log.