Can anyone please recommend a good HIPS programs for Vista64? Free or not does not matter. I am already using SAS Pro but would love the added security of HIPS like DefenseWall for Vista64

Many thanks

-{ Quote: "Can anyone please recommend a good HIPS programs for Vista64? Free or not does not matter. I am already using SAS Pro but would love the added security of HIPS like DefenseWall for Vista64

Many thanks" }-

No go for DW on Vista64.

You can download the Norton UAC tool which works good (you already have an HIPS like security called UAC in Vista64).

When you take a plunge into a classical HIPS, try Comodo

WHen you have a decent backup/recovery plan you coud also try a DW like program in Beta called Haute Secure. It works on Vista64, but last version is from pre SP1, so try it only with decent backup/recovery in place.

Cheers

Thank you Kees
I know DefenseWall will not work, at least not 100% , it does have this feature, "Go Banking/Shopping" that I would love to have, any other program that offers something similar for Vista64? Like Sandboxie also look really good, also no go for Vista64, does this one also have an equivalent for Vista64?
As for HIPS I think I will try "Malware Defender" since Comodo is mostly a firewall and for that, I want to try Outpost.
But I am still very interesting in some more opinion/advise

-{ Quote: "Thank you Kees
I know DefenseWall will not work, at least not 100% , it does have this feature, "Go Banking/Shopping" that I would love to have, any other program that offers something similar for Vista64? Like Sandboxie also look really good, also no go for Vista64, does this one also have an equivalent for Vista64?
As for HIPS I think I will try "Malware Defender" since Comodo is mostly a firewall and for that, I want to try Outpost.
But I am still very interesting in some more opinion/advise" }-

In that case, With Comodo you get Firewall & Defense+ (HIPS). You can also disable the Firewall if you want to. Comodo HIPS is already one of the strongest out there, and you can tweak it to YOUR needs, v3.5 by default also brings less pop ups then v3.0, and usability will improve even more in next release.

-{ Quote: "In that case, With Comodo you get Firewall & Defense+ (HIPS). You can also disable the Firewall if you want to. Comodo HIPS is already one of the strongest out there, and you can tweak it to YOUR needs, v3.5 by default also brings less pop ups then v3.0, and usability will improve even more in next release." }-


Is Comodo's HIPS better then Malware Defender's ? Malware Defender seems extremely complete.

MD is probably more granular with its rules and i believe provides better protection than D+, although MD is much more complicated.

ok anyway, apparently there is NO possibility to have HIPS in Vista64 (issue with patch guard), so I am guessing Comodo does not runs its HIPS modelu in Vista64
>:(

Sana Security Safe Connect and Identity Protection are behaviour blockers (HIPS) that work on Vista 64, then theres Privatefirewall that got Dynamic Security Agent included for Vista 64, also i think WinPatrol Pro got HIPS included for Vista 64.

J-C,

It may be disappointing to you, but with Vista64 and Norton's UAC Tool you really have a strong intrusion protection. Vista64 has a lot improvements over XP and some over Vista32.

Coupled with a decent FW (try Vista FW control for 64 bits to have some outbound protection) and Antivirus, I think Vista64 improved architecture is hard to crack.

Comodo's D+ is a strong HIPS and THE first available on VIsta64 and works well

When you use Google's CHrome the internal Sandbox will also reduce infection chance with say 70%. UAC will warn you when an intrusion occurs. Vista64 architecture makes it hard to crack. Due to the limited market share there is also few OS specific malware wandering around the world wide web (simular to the Mac security 'advantage').

To give you an example, my son's Vista64 bit game box is defended with
- ONLY hardware FW
- UAC ON + Norton's UAC tool
- Primary Response Safe Connect (lisence will not be renewed, due to free UAC Norton tool)
- Avira with high heuristics and check at write only
- Windows defender with no scans (and warn= block at start of un-categorised programs)
- His schoolwork is saved in an encrypted partition

He is a high risk surfer (gamer 17 years old), a media junkie of his generation: a game has to be tried, funny movie has to been seen. And when some thing goes wrong: well **** happens. He is problably the highest malware risk factor in our security set up. That is why he is locked in his own partition on our network. And after one year Vista64 he is still not infected with anything.

I hope this will put security paranoia a little in perspective

Cheers

-{ Quote: "Can anyone please recommend a good HIPS programs for Vista64? Free or not does not matter. I am already using SAS Pro but would love the added security of HIPS like DefenseWall for Vista64

Many thanks" }-

Try with comodo defense+ or outpost firewall

i HARD vote for comodo not because he is "only" the best (build 429 rocks the earth) , it because it also FREE !! + awesome support (10x to mitch)

so why pay? if u get the HIPS + FIREWALL (bonus) + AV (no recommended ATM)

cheers :thumb:

Comodo was not only the first Vista 64bit HIPS, It was also the first Vista 64bit Firewall. :)

-{ Quote: "Comodo was not only the first Vista 64bit HIPS, It was also the first Vista 64bit Firewall. :)" }-

Not true that was Microsoft's own ;)

I guess it provides more credentials to D+ when a Comodo critic (like me) says that D+ is good HIPS, than a Comodo forum moderator :P

Cheers Kees

@J-C: Since third-part HIPS can´t patch the kernel, neither will malware. You already have a descent inbuilt HIPS with UAC, Windows Defender (security agents) and DEP (by default). If you want to tighten up further, then create an user account.

/C.

-{ Quote: "Not true that was Microsoft's own ;)

I guess it provides more credentials to D+ when a Comodo critic (like me) says that D+ is good HIPS, than a Comodo forum moderator :P

Cheers Kees" }-

Microsoft !!! pfft... lol But good point. :-)

-{ Quote: "@J-C: Since third-part HIPS can´t patch the kernel, neither will malware. You already have a descent inbuilt HIPS with UAC, Windows Defender (security agents) and DEP (by default). If you want to tighten up further, then create an user account.

/C." }-

Agree, I also told him in post 9. I guess it is something psychological: to feel save you have to something extra.

-{ Quote: "J-C,

When you use Google's CHrome the internal Sandbox will also reduce infection chance with say 70%. UAC will warn you when an intrusion occurs. " }-

Hi Kees,

You say Chrome has an internal Sandbox. You mean the 'Phishing and malware protection' feature?

tia
xtree

-{ Quote: "@J-C: Since third-part HIPS can´t patch the kernel, neither will malware. You already have a descent inbuilt HIPS with UAC, Windows Defender (security agents) and DEP (by default). If you want to tighten up further, then create an user account. /C." }-

Hi Cerxes,

What does DEP mean? What is it used for? I have a Vista Basic 32-bit.

tia
xtree

-{ Quote: "Hi Kees,

You say Chrome has an internal Sandbox. You mean the 'Phishing and malware protection' feature?

tia
xtree" }-

No the rendering engine is sandboxed, see http://www.wilderssecurity.com/showpost.php?p=1341118&postcount=29 for explanation

As an extra safety precaution, I am running IRON contained (meaning only allowed to write to specific directory and limited regsitry keys) within Malware Defender. real good browser now it is out of Beta

-{ Quote: "...What does DEP mean? What is it used for? I have a Vista Basic 32-bit." }-
For information about DEP see here:

http://en.wikipedia.org/wiki/Data_Execution_Prevention
http://support.microsoft.com/kb/875352
http://windowshelp.microsoft.com/Windows/en-US/Help/186de3d0-01af-4d4c-981d-674637d2f4bf1033.mspx

I would strongly advice to enable it, preferably using the "AlwaysOn" switch if it doesn´t break any critical applications for you.

/C.

Thanks both of you, Cerxes and Kees for the info.