script to disable windows defender for windows server OSes

import os

import ctypes

​

class disable_file_system_redirection:

    _disable = ctypes.windll.kernel32.Wow64DisableWow64FsRedirection

    _revert = ctypes.windll.kernel32.Wow64RevertWow64FsRedirection

    def __enter__(self):

        self.old_value = ctypes.c_long()

        self.success = self._disable(ctypes.byref(self.old_value))

    def __exit__(self, type, value, traceback):

        if self.success:

            self._revert(self.old_value)

​

def ecmd(command):   

    from subprocess import Popen, PIPE

    import ctypes

    with disable_file_system_redirection():

        obj = Popen(command, shell = True, stdout = PIPE, stderr = PIPE)

    out, err = obj.communicate()

    ret=obj.returncode

    return ret,out,err

​

def disable():

    with disable_file_system_redirection():    

        ecmd('powershell "Set-ExecutionPolicy RemoteSigned"')

        ret,output,error = ecmd('powershell Uninstall-WindowsFeature -Name Windows-Defender')

        if ret == 0:

            print(ret)

            print(output)

        else:

            print(ret)

            print(error)

disable()