Old news, it's indeed not enough to rely on AV's, so that's why AV companies are offering a lot more than back in the days. But I will tell you one thing, I would never use products from a company with such an annoying website: http://www.sentinelone.com/
They claim to have "Dynamic Exploit Detection", but I am still curious whether they have managed to build solid anti-exploit functionality. It is quite hard to build fairly fail-proof mitigation software
A lot of these products offer anti-exploit, but I also don't know whether it's true memory corruption mitigations, or simply behavior blockers combined with anti-exe.