Malwarebytes Anti-Exploit

I can't find a working link to 1.08.1.1043.

 

https://malwarebytes.app.box.com/s/38r0w2e6d9qza64vpyorlhk7tckmbrom
It is a release candidate (beta) not public release yet.

 

Thanx G1111.

 

https://forums.malwarebytes.org/index.php?/topic/172363-mbae-108-beta-preview/page-15#entry998740 releases build 1044.

https://malwarebytes.box.com/s/6n9ac5s8kk6a39awkogaxiaun120ohv3 = mbae-setup-1.08.1.1044.exe

 

Hello,
Is this [Template_MBAE] current for W8.1 x64 + SBIE v5.06
https://www.wilderssecurity.com/threads/malwarebytes-anti-exploit.354641/page-81#post-2486113
Thanks

 

Hello bjm_:

That is what I use too. Just remember to include the below configuration file entries also.

[GlobalSettings]

Template=MBAE

 

The latest RC (1044) is running smoothly on my machine (Win10 32-build). Thanks, Pedro.

 

I have had problems with MB anti-exploit on my windows 10 64bit PC. Is there a 64bit version available?

 

Thanks....I've been following this Thread for sometime, reluctant to trial MBAE because Sandboxie does not have default MBAE Template / Compatibility.

 

MBAE includes protection for 64bit processes. Follow these steps if you have experienced problems under Windows 10:
https://forums.malwarebytes.org/ind...loit-not-started-after-upgrade-to-windows-10/

 

@ZeroVulnLabs the beta build is 1044, though your footnote reads 1040.

 

Perhaps an integral MBAE template will eventually be included in a future SBIE.

Can't you imagine this is exactly what Ronen Tzur (SBIE's original author) had in mind when the editable SBIE configuration feature was included?

In the meantime, the immense protection benefits of MBAE should be permitted to overcome your understandable cautiousness.

Cheers bjm_

 

Sure, I can believe. My belief however does equate to the required skill set to create [Template_Local_MBAE].

Before hmpalert template was added by Sandboxie.
Surfright offered the OpenPipePath to satisfy Sandboxie.

Why are Sandboxie shields discussed.
Are there exploit kits aimed at Sandboxie processes.
Thanks

 

Upgraded from build 1043 to 1044. I will report back if I experience any problems. I'm using Windows 7X64 Ultimate.

 

From 1.08.1.1043 to 1.08.1.1044 on Windows 10 Pro x64.
No problems so far.

 

Yes, but in a different way than to be expected. Some exploits are sandbox and VM aware and will not run if they detect either one.

 

Yeah, maybe that's why HMP.A has sandbox-aware malware vaccination.

 

I'd be careful with that. Some malware when detecting the presence of a VM go berserk and destroy the system just to screw with researchers. A sandbox-aware malware vaccination approach might play against the user with some malware.

 

I'll be careful. I'm waiting with anticipation to read Wilders members post they've had real (running machine as normal) exploits thwarted by MBAE or Alert. I chose Alert for ease of Sandboxie compatibility. I've not heard Wilders members post running machine as everyday and had sandbox-aware malware vaccination event.
Regards

 

Malwarebytes Anti-Exploit Premium 1.08.1.1044 stable / November 4, 2015
https://forums.malwarebytes.org/ind...tes-anti-exploit-history-updates/#entry999707

------------------------------------------------------------------------------

https://www.malwarebytes.org/support/releasehistory/

Spoiler: Release History

New Features
• Added Layer0 Dynamic Anti-HeapSpraying mitigation
• Added Layer0 Anti-Exploit fingerprinting mitigation
• Added Layer0 finetuned VBScript mitigation for IE
• Added Layer1 ROP-RET gadget detection mitigation
• Added Layer3 Application Behavior rules
• Added protection for Microsoft Edge
• Added protection for LibreOffice
• Added failover upgrade mechanism
• Added auto-recovery for Anti-Exploit service

Fixes
• Fixed conflict with third-party products that use the same hooks
• Fixed conflict with Office family profile
• Fixed conflict with banking software plugin for browsers
• Fixed conflict with Citrix when opening IE
• Fixed conflict with components from Asus and Huawei
• Fixed conflict with Kaspersky 16
• Fixed conflict with Comodo
• Fixed conflict with Imprivata OneSign
• Fixed issue when custom shields were not kept after upgrade
• Fixed issue with exclusions sometimes not applied to PDF profile
• Fixed issue with Layer3 Application Behavior
• Fixed issue with missing balloon notifications
• Fixed issue with missing balloon notifications
• Fixed false positive with Adobe Acrobat
• Fixed false positive with certain .NET modules under IE
• Fixed PhantomPDF crash when converting to doc

.

 

With all due respect, it is a risk I'm willing to take. I would rather know my machine is infected than have undiagnosed malware running on my machine, even if that means having a 'broken' computer - something which can easily be remedied if you do regular image backups.

 

MBAE 1.08 is final:
https://forums.malwarebytes.org/index.php?/topic/174758-malwarebytes-anti-exploit-108/

 

After installing MBAE 1.08 on one of my systems, I started getting an exploit blocked message for IE or one of its' add-ons. Going back to the previous 1.07 stopped the problem.

So now I am wondering if 1.08 has a new bug in it, OR the new version is now identifying an exploit not caught by 1.07.

 

Is 1.08 any different from 1.08.1.1044 stable?

 

no, identical. just that the post does not mention the full ver. number