@SHvFl Thanks, as you explained, running on same desktop without some desktop hook (and messaging) protection would be great for all rich content programs not directly connected to the internet, so a automated two level protection would be make the experience more seamless.
@Windows_Security There is Training, Permissive, Recommended and Expert Modes. ReHIPS is similar to SpyShelter HIPS and Restricted Applications. However, in ReHIPS case, restricted (isolated) applications are run inside a separate limited user account profile (right from within the PA). The ReHIPS isolated environment has additional file system access and other restrictions - above and beyond M$' LUA. ReHIPS has the benefit of being able to monitor and whitelisting command lines. When you get around to using it, you will quickly see the similarities and differences with SpyShelter. One notable difference between SpS HIPS and ReHIPS is that ReHIPS is hookless. The other main difference is that ReHIPS only monitors execution of files at the moment. Other action monitoring might be forthcoming, but not anytime soon...
yes, in addition to the various protection levels, you also have a "Lockdown Mode" , means everything not in the rulelist is automatically blocked.
Interesting, can it be configured to stay silent in Lockdown Mode? Without popup messages and alerts.
I would be interested in that data too. Any how, it seems ReCrypt is much stronger in their local (Russian) market - and this is logical.
Great. Looking forward to it. Although security is better then ever there is an empty void ever since HIPS of 32Bit days bailed out from x64
Yes because most of them (defensewall, etc..) used kernel hooks so they couldn't keep up with patchguard. ReHIPS uses Windows mechanisms so it doesn't has those kind of issues.
Shouldn't this be moved to "other anti-malware software" isn't a sandboxing or virtualization software, and historically all the hips and policy based blockers han been in this subforum and currently all its competitors (similar apps) are there NVT ERP, Spyshelter, Comodo HIPS, Appguard, VoodooShield, Smart Object Blocker, etc. even some relevant threads https://www.wilderssecurity.com/threads/classical-hips-and-policy-based-hips-discussion.372859/
No it shouldn't, because it is a sandboxing software; but your reaction was expected, few people have access to it at the moment so it is normal you don't get a proper understanding of it just be patient; we just got the second beta build. Each sandboxed apps is ran under its own tighten SUA with default/deny access , those SUA are materialized via virtual desktops accessible via a widget, each desktops (by default) are isolated from each other. The HIPS module allow you deeper controls of each application (access rights, privileges, integrity levels, etc...) and the possibility to lockdown your system.
Salutations/Greetings! https://re-hips.com/en/news#news27 Waiting! Anybody have a link for the new download? ReHIPS 2.2.0?