You have hardend your Windows 10/11 endpoints by enabling all the security features provided, ASR rules, Defender for Endpoint, EDR/MDR, Bitlocker, Applocker.

Let's have a look what happens if we try to become local admin on the device, will we succeed ?

What alerts do we see, what is blocked, what is expected, what was unexpected ?