Microsoft Defender Application Guard Companion not only provides an isolated Microsoft Edge browsing window but also allows browsers other than Microsoft Edge to work with it as well.

Microsoft Defender Application Guard works by utilizing a unique hardware-based isolation approach by opening untrusted websites inside a lightweight container separated from your OS via Hyper-V virtualization technology. Like other similar apps, if an untrusted website happens to be malicious, it remains within Application Guard's secure container, keeping your machine and data protected from infection.

Designed initially for Windows 10 and Microsoft Edge, Application Guard was meant to isolate enterprise-defined untrusted sites, protecting your company while your employees browse the Internet. As an enterprise administrator, you have the power to define what is among trusted web sites, cloud resources, and internal networks. Everything not on your list is considered untrusted.

If someone within the network goes to an untrusted site through either Microsoft Edge, Internet Explorer, etc., the site is opened in an isolated Hyper-V-enabled container, which is separate from the host operating system. This container isolation means that if the untrusted site turns out to be malicious, the host PC is protected, and the attacker can't get to your enterprise data. For example, this approach makes the isolated container anonymous, so an attacker can't get to your employee's enterprise credentials.

If you're using Windows 10 in an unmanaged environment, you can use this extension to open untrusted websites inside an isolated Application Guard session manually, but untrusted sites will not be redirected automatically.


Similar:

How to Enable Windows Sandbox in Windows 10 Home

Windows 10 Sandbox Feature Is Grayed Out

VMWare Failed to Get Exclusive Lock on the Configuration File Error