ReHIPS

Discussion in 'sandboxing & virtualization' started by MrBrian, May 24, 2014.

  1. @SHvFl

    Thanks, as you explained, running on same desktop without some desktop hook (and messaging) protection would be great for all rich content programs not directly connected to the internet, so a automated two level protection would be make the experience more seamless.

    :thumb:
     
  2. So it has several useability levels (including advanced I presume)
     
  3. hjlbx

    hjlbx Guest

    @Windows_Security

    There is Training, Permissive, Recommended and Expert Modes.

    ReHIPS is similar to SpyShelter HIPS and Restricted Applications.

    However, in ReHIPS case, restricted (isolated) applications are run inside a separate limited user account profile (right from within the PA). The ReHIPS isolated environment has additional file system access and other restrictions - above and beyond M$' LUA.

    ReHIPS has the benefit of being able to monitor and whitelisting command lines.

    When you get around to using it, you will quickly see the similarities and differences with SpyShelter.

    One notable difference between SpS HIPS and ReHIPS is that ReHIPS is hookless.

    The other main difference is that ReHIPS only monitors execution of files at the moment. Other action monitoring might be forthcoming, but not anytime soon...
     
  4. guest

    guest Guest

    i think we should move our discussion to the ReHIPS thread :p
     
  5. guest

    guest Guest

    yes, in addition to the various protection levels, you also have a "Lockdown Mode" , means everything not in the rulelist is automatically blocked.
     
  6. guest

    guest Guest

    Interesting, can it be configured to stay silent in Lockdown Mode? Without popup messages and alerts.
     
  7. guest

    guest Guest

    you can set the popup timeout to 1sec but not hiding the popup.
     
  8. guest

    guest Guest

    forgot that tab :p
     
  9. Grumlo

    Grumlo Registered Member

    Joined:
    Nov 14, 2015
    Posts:
    176
    when can I buy ReHIPS ?
     
  10. Grumlo

    Grumlo Registered Member

    Joined:
    Nov 14, 2015
    Posts:
    176
    I try to do that :)
     
  11. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,549
    any way to download the beta at the present time?
     
  12. guest

    guest Guest

    closed-beta , so no downloads.
     
  13. chrcol

    chrcol Registered Member

    Joined:
    Apr 19, 2006
    Posts:
    982
    Location:
    UK
    is free version with limited isolated processes still planned?
     
  14. guest

    guest Guest

    no idea, they are still evaluating their marketing plan.
     
  15. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,872
    You can run the beta as a free lite version or upgrade to the full paid version.
     
  16. Would be interesting what they assess as the potential market for aHIPS sandbox.
     
  17. hjlbx

    hjlbx Guest

    I would be interested in that data too.

    Any how, it seems ReCrypt is much stronger in their local (Russian) market - and this is logical.
     
  18. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Thanks

    We'll be watch and waiting for a release then when it comes.
     
  19. guest

    guest Guest

    People will be informed here once a public beta/stable release will be available.
     
  20. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Great. Looking forward to it.

    Although security is better then ever there is an empty void ever since HIPS of 32Bit days bailed out from x64
     
  21. guest

    guest Guest

    Yes because most of them (defensewall, etc..) used kernel hooks so they couldn't keep up with patchguard. ReHIPS uses Windows mechanisms so it doesn't has those kind of issues.
     
  22. guest

    guest Guest

  23. guest

    guest Guest

    policy restriction not sandbox
     
  24. guest

    guest Guest

    No it shouldn't, because it is a sandboxing software; but your reaction was expected, few people have access to it at the moment so it is normal you don't get a proper understanding of it ;)
    just be patient; we just got the second beta build.

    Each sandboxed apps is ran under its own tighten SUA with default/deny access , those SUA are materialized via virtual desktops accessible via a widget, each desktops (by default) are isolated from each other.
    The HIPS module allow you deeper controls of each application (access rights, privileges, integrity levels, etc...) and the possibility to lockdown your system.
     
  25. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    905
    Location:
    U.S. Citizen
    Last edited: May 21, 2016
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.