ProSecurity v1.20 released

Discussion in 'other anti-malware software' started by PSDeveloper, Oct 12, 2006.

Thread Status:
Not open for further replies.
  1. PSDeveloper

    PSDeveloper Registered Member

    Joined:
    Sep 1, 2006
    Posts:
    93
    Website:http://www.proactive-hips.com/
    Screenshots: http://www.proactive-hips.com/screenshot.php
    Download:http://www.proactive-hips.com/download.php

    October 12, v1.20
    1. [New] Protect process from terminating as part of a job.
    2. [New] Protection disk from low level disk accessing.
    3. [New] Restrict process from debuging at system level.
    4. [New] Provide "Verify Checksum" option for application rule.
    5. [Fix] The activation state of application's registry/hook rules wouldn't been set when importing rules.
    6. [Fix] ProSecurity wouldn't delete application rule's registry/hook rules when this application is deleted.
    7. [Fix] ProSecurity didn't check whether a rule existing already while adding a new hook rule of an application.
    8. [Fix] ProSecurity can't been uninstall in normal mode of Windows after the trial-time expired.
    9. [Fix] Prosecurity shows warning box with wrong process information in a very few cases.
    10. [Improve] Remember all columns' size of lists in Advanced Settings page.
    11. [Improve] Support on Windows 2003 and 2003 SP1.

    Any feedback will be appreciated!
     
  2. TECHWG

    TECHWG Guest

    Oh sweet . .
    whats this low disk level access >? what is that used for?

    My guess would be the ability to lock files from other process using them ?

    Thanks

    WG
     
  3. PSDeveloper

    PSDeveloper Registered Member

    Joined:
    Sep 1, 2006
    Posts:
    93
    "Low level disk access" is used to protect disk from writing by malware, some malwares use this function to destory datas of disk.
     
  4. bellgamin

    bellgamin Registered Member

    Joined:
    Aug 1, 2002
    Posts:
    8,102
    Location:
    Hawaii
    I couldn't get the website's screenshot of the Application Rules to work. It just showed the very top of the screenshot.
     
  5. PSDeveloper

    PSDeveloper Registered Member

    Joined:
    Sep 1, 2006
    Posts:
    93
    Thanks bellgamin, this has been fixed.
     
  6. bellgamin

    bellgamin Registered Member

    Joined:
    Aug 1, 2002
    Posts:
    8,102
    Location:
    Hawaii
    Yes, it's fixed! Mahalo nui loa.

    The more I see of PS, the better it looks to me. Would it be possible to post its Help file online, or else provide a downloadable pdf copy?

    Also, has PS been tested for possible conflicts with other security programs that use *hooks* -- such as System Security Monitor, Process Guard, WindowsDefender, etc? If so, can you tell us which apps should be deactivated before testing your program?
     
  7. PSDeveloper

    PSDeveloper Registered Member

    Joined:
    Sep 1, 2006
    Posts:
    93
    bellgamin:
    its online help url: http://www.proactive-hips.com/manualbook

    ProSecurity can work with SSM, PG and other security softwares, but if it runs with SSM, there will be a very small compatible problem, this problem cause ProSecurity's screenshot and password protection function lose effectiveness.

    If you have found any bug or compatible problem, please tell us, thanks for your testing!
     
  8. Kenjin

    Kenjin Registered Member

    Joined:
    Sep 29, 2004
    Posts:
    63
    I fully agree. While the 1.0 version had some issues, PS in my opinion has now matured into a very good, stable and feature-rich product. I think it could still use some improvement or clean up in the GUI area, but functionality wise it is on par with the best HIPS software around - and even better in some areas.

    The new version e.g. comes with dll/library load control, a feature that I have not seen in any other HIPS so far (except for the almighty Tiny Firewall). New unique features combined with support of all the well known "standard" HIPS features like process termination/modification protection, driver/service load control and so on, make PS IMHO far better than e.g. AppDefend/RegDefend or ProcessGuard which look more and more obsolete to me.


    I am unsure why PS has not attracted more attention up to now, however I can only encourage everyone who is interested in such type of HIPS to give it try. In my experience the author is also open for any constructive feedback and implemented many of my proposed enhancements or new features very quickly.


    I have run the 1.20 betas for a few weeks now together with the latest SSM betas on the same machine and I had not a single problem with it, apart from what the author already stated above. According to my experience, PS basically plays nicely with other system software and for the moment I can live with losing the 2 minor functions in PG when SSM is installed. But probably in the long term one would decide between these two anyway, i.e. which one to keep, as they are overlapping a lot feature wise.
     
  9. bellgamin

    bellgamin Registered Member

    Joined:
    Aug 1, 2002
    Posts:
    8,102
    Location:
    Hawaii
    Excellent manual! Now... why couldn't I find it on my own?o_O

    Reference the manual as to Registry Rule Group where it states:
    For those of us who are fumble-fingered, or who like to try stuff before we RTFM, may I suggest a "Restore Default" button?

    Also,is PS's registry rule default list consistent with hojtsy's list?
     
  10. PSDeveloper

    PSDeveloper Registered Member

    Joined:
    Sep 1, 2006
    Posts:
    93
    Thank you for your suggestion, the "Restore Default" function is a good idea, I will add this in the next version.

    Actually it's my first time saw the "hojtsy's list", anyhow I will check this list and add rules that don't exist in ProSecurity's protection list. Thanks!
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.