VoodooShield ?

[G1111]

Kees - The thing I really like about VoodooShield is its simplicity. I would hate to see it become like NVTERP that is much more complicated for the average user. To me the interface is fine. It does allow option to allow programs from Windows System or Program folders already.

[Malwar]

Quote:

Originally Posted by VoodooShield

There are not too many more new features that we can think to add, but if anyone thinks of some, please let us know!



Thank you!

Maybe add a ''block and quarantine'' feature to the red alert window. That way say I downloaded a executable and it had a virus in it and VS blocked it then instead of me manually having to delete I can just click on the alert and quarantine it.
Thanks, Malwar

[VoodooShield]

Wow, thank you Windows Security for all of your input, it really helps! I will go through each idea carefully and see if we can offer it in the next version of VS. Thank you!

[VoodooShield]

Hey G111, yeah, we are going to keep it as simple as possible either way! Thank you!

Quote:

Originally Posted by G1111

Kees - The thing I really like about VoodooShield is its simplicity. I would hate to see it become like NVTERP that is much more complicated for the average user. To me the interface is fine. It does allow option to allow programs from Windows System or Program folders already.

[VoodooShield]

Thank you for the idea, we will probably include this on the next version!

Quote:

Originally Posted by Malwar

Maybe add a ''block and quarantine'' feature to the red alert window. That way say I downloaded a virus executed VS blocked it then instead of me manually having to delete I can just click on the alert and quarantine it.
Thanks, Malwar

[Malwar]

Quote:

Originally Posted by VoodooShield

Thank you for the idea, we will probably include this on the next version!

VoodooShield I meant to say what if I executed a file and VS blocked it. Not If I download a execute file and VS blocks it.
Also thanks for thinking about adding my feature into the next version!!!!

PS: Sorry if there was a misunderstanding.

[Windows_Security]

Quote:

Originally Posted by G1111

Kees - The thing I really like about VoodooShield is its simplicity. I would hate to see it become like NVTERP that is much more complicated for the average user. To me the interface is fine. It does allow option to allow programs from Windows System or Program folders already.

Agree,

Design principles are mentioned to keep it simple. The better Applocker/SRP really provide ease of use (e.g. marking a program as an updater and auto updating it hash, creating your own publisher/product whitelist to reduce user interaction).

The UAC and EMET suggestions are just food for thought for additional functionality (which was asked), so it is up to developers

Regards Kees

[siketa]

2 text errors in Wizard:
notificaion -> notification
addtional -> additional

[VoodooShield]

Oops, thank you siketa!

[siketa]

Suggestion:

Make context menu option for quick whitelisting/blacklisting.
VoodooShield->Trusted Installer; Trusted File; Untrusted File

This option is used by DefenseWall, GeSWall, SecureAPlus, etc. and is more secure than click on baloon hint (user can easily allow malware file by accident).

[MRF71]

How powerful is VS? has anything bypassed it so far? is it as secure as appguard?

[Cutting_Edgetech]

I'm not aware of VS being bypassed, but of course it's possible for anything to be bypassed. In my experience so far it's extremely powerful! I use it with Appguard. I just make sure to set VS as a powerapp, and also as a trusted publisher in AG's settings. I do this just to be on the safe side for compatibility purposes. VS is easier to use than AG, and will learn the applications on your machine while in training mode. I could explain more later, but I have to leave for work now.

[VoodooShield]

Thank you for your input, I am not exactly sure what you mean though. Are you saying to make a right click option in the context menu with Trusted Installer; Trusted File; Untrusted File as options? Thank you!

Quote:

Originally Posted by siketa

Suggestion:

Make context menu option for quick whitelisting/blacklisting.
VoodooShield->Trusted Installer; Trusted File; Untrusted File

This option is used by DefenseWall, GeSWall, SecureAPlus, etc. and is more secure than click on baloon hint (user can easily allow malware file by accident).

[siketa]

Quote:

Originally Posted by VoodooShield

Thank you for your input, I am not exactly sure what you mean though. Are you saying to make a right click option in the context menu with Trusted Installer; Trusted File; Untrusted File as options? Thank you!

Exactly that!

[MRF71]

Quote:

Originally Posted by Cutting_Edgetech

I'm not aware of VS being bypassed, but of course it's possible for anything to be bypassed. In my experience so far it's extremely powerful! I use it with Appguard. I just make sure to set VS as a powerapp, and also as a trusted publisher in AG's settings. I do this just to be on the safe side for compatibility purposes. VS is easier to use than AG, and will learn the applications on your machine while in training mode. I could explain more later, but I have to leave for work now.

Both together should be almost bulletproof

[Cutting_Edgetech]

I have created a bug report at Voodoo Shields official forum. I saw that no one has been posting there for a while so I will post it here as well.

I recieved the following error with .NET Framework related to VoodooShield shown in the Screenshot below. It happened as soon as the desktop loaded. I checked for an application dump file, and there was no application dump file. VoodooShield seems to be working fine now. I have not tried rebooting yet. I'm running in Shadow Mode now. I use Shadow Defender on all my machines. I have created a bug report with needed info. This is a possible bug, and has not been verified.

I went ahead, and sent VoodooShield a PM with a link to the bug report I created.

[Cutting_Edgetech]

Quote:

Originally Posted by MRF71

Both together should be almost bulletproof

Yes, they should

[VoodooShield]

Yes, it looks there might be a conflict with Shadow Defender to me too. If it happens again, please send the log file to support@voodooshield.com and I will take a look at it.

I doubt it does happen again, but if it does, please let me know!

Thank you for letting us know about this error, and thank you TH for the help!