Overview

This script calls Remove-WfpBlock, which removes every WFP outbound-block filter that was created by the SpecterInsight WFP manager and attempts to delete the associated custom provider. It outputs the total count of filters that were deleted.

Use this script to clean up all EDR blocks in a single operation. To remove only a single specific filter, use Remove WFP Filter by ID instead.

Pre-Requisites

• High integrity (Administrator) process

Dependencies

• Firewall

Parameters

None.

Example Output

Deleted 4 WFP filter(s).