Safe + Secure
PC Matic Complete Protection
Products
Antivirus
PC Matic VPN
Identity Protection
PC Matic Privacy
Support Unlimited
Threat Awareness
How PC Matic Protects You
SuperShield Allowlist
Business Protection
PC Matic Pro
PC Matic for SMB
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
The Cyber Scam Report
Town Hall Sessions
Tools & More
Password Generator
Internet Speed Test
What Is My IP?
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support

Application Allowlisting

Proactively Prevent Ransomware & Malware

Zero trust endpoint protection to run only what you trust and block what you don't.
Starting at
$150 /yr
Buy Now
Need help? Contact our team here
Not sure which version of PC Matic is best for your organization? Looking for mobile device support?
Windows 7+ macOS 10.12+ Windows Server 2008R2+
Approved Advanced Endpoint Protection
AV-TEST
Best Advanced Protection
2023
AV-TEST
Best
Performance
2023
22B+
PC Matic has scanned and verified over 22 billion applications and devices
15M+
PC Matic has prevented over 15,000,000 ransomware, zero-day and malware cyber attacks
3M+
More than 3 million satisfied customers have used PC Matic products and are now worry-free
100K+
Over 100k business endpoints use PC Matic to secure their IT infrastructure

Protect Your Existing Security Stack

PC Matic's Application Allowlisting is a critical preventative layer of cyber-protection that
resides on top of other endpoint security solutions.
ESET
Avast
Symantec
IBM Security
Sophos
Trellix
BlackBerry
CrowdStrike
Carbon Black
TrendMicro
Forcepoint
Sentinel One
Webroot
Bitdefender
SecureWorks
Malwarebytes
Our zero trust allowlisting solution prevents hacking and cyber-attacks.
Block all malware, ransomware and malicious scripts from executing. Protect your business data, users, and network with our allowlist cybersecurity solution.
Buy Now
Need help? Contact our team here
Not sure which version of PC Matic is best for your organization? Looking for mobile device support?

The Company We Keep

Prominent industry leaders choose PC Matic as their endpoint protection solution because we secure their digital domain. We stop ransomware. We prevent cyber attacks.
Explore Customer Case Studies

Adaptable Application Allowlisting

PC Matic provides a patented default-deny security layer at the device that blocks
all unknown executions without introducing headaches for IT.

Global Allowlist

A master list of over 22 billion known good applications that each endpoint can check via local definitions or the cloud.

Stress-Free

Local overrides can be added after prevention with a focus on accuracy and without concern for responding to an already active infection

Standards

The National Institute of Standards and Technology (NIST) has released standards that require application allowlisting for compliance

Up-To-Date

Application allowlist updates are fast and protection levels don't suffer without them; allowing for frequent offline use with peak security

Lightweight

The allowlist is lightweight and PC Matic has consistently won awards for AV performance against our competition

Economical

Adding local overrides to supplement the global allowlist requires significantly fewer IT resources than responding to constant detect and respond alerts

Proactive Protection

Stop Responding to Threats.
Prevent Them.

Buy Now
Need help? Contact our team here
Not sure which version of PC Matic is best for your organization? Looking for mobile device support?

Multi-Layer Threat Prevention

PC Matic employs several allowlist layers on top of the same traditional security blacklist
that our competition uses as the first line of defense against malicious code and unauthorized applications.

Global Allowlist

Our Global Allowlist is a master list of good applications that each endpoint can check via local definitions or the cloud.

Local Allowlist

Custom and low-frequency applications can be added locally by customers to augment the global allowlist.

Signature Allowlist

Good signed applications are added via the publisher's signature eliminating the need for allowlisting hashes for past and future applications.

Malicious Script Allowlist

Ransomware can be deployed via valid scripting applications which necessitated the creation of a scripting allowlist, the only one of its kind.

RDP Authentication Allowlist

Ransomware can be deployed through breached RDP ports. PC Matic authenticates the entering device to close this hole.

Microsoft Office Allowlist

Ransomware can be launched via macros in Office. PC Matic includes a allowlist of valid applications that can be launched through Office.

File Extension Allowlist

Ransomware can be executed through compromised file extensions. PC Matic has a allowlist of valid file extensions.

Local Directory Allowlist

Customers can allowlist a directory as a last resort, making it easier to write, test and deploy custom code in their environment.

Conflict-Free Whitelisting

PC Matic is designed at its core to run alongside other security layers without conflicts. Adding application allowlisting into any existing security stack without compromising other layers or overall security has never been simpler. Experts recommend deploying a security stack with a layered approach to protect resources and data while using application allowlisting as the fail-safe layer. When other layers fail, PC Matic blocks malware from running on the workstation because it is not a known good application.
PC Matic represents a long overdue shift in the cybersecurity industry to absolute prevention. Today's threats to critical infrastructure, industry and all levels of government demand nothing less.

Application Allowlisting is a
Cybersecurity Best Practice

"Application Allowlisting should be an integral component of a defense-in-depth solution."

"Application allowlisting is surely one of the reliable solutions available today..."

Colin McHugo, Director at Quantum Forensic Investigations

"Utilize application "allowlisting," which allows only specific programs to run on your computer. This will prevent malicious programs from running on your computer."

USA Today

"Application allowlisting is one of the best security strategies as it allows only specified programs to run, while blocking all others, including malicious software."