VoodooShield/Cyberlock

Sure, thank you!

 

Yeah, I never did find the password for our SHA-256 digital signature, but I had to ask Vlad another question anyway, so I asked him why the SHA-256 line was commented out, and he explained why and told me that I could re-enable it... so now I do not have to look for the password for a few months .

 

Well, it is a super stable beta . I really hope to finish up the final release very soon.

 

Downloading now, will test & post the findings here.

 

Glad to see that this product is developed so well and that the developer so accurate in solving customer problems.
WELL DONE!!! (5 star )

I had the intention to test VS but do not know how should CORRECTLY to do (as someone already mentioned).
Some suggestions?

 

@VoodooShield

Can you please tell me in your opinion, what free security configuration is best or recommended to run with voodoo?
What do you use?
Thanks

 

VoodooShield,

I liked previous Scan & Allow compared to current Auto Mode.

Previous Scan & Allow Mode - Blacklist scan + VoodooAi Only.
Current Auto Mode - Blacklist scan + VoodooAi + cmd, script, etc... alerts.

There is default mode i.e Smart Mode - Provides strong protection easy way.
There is Always ON Mode - Provides strong protection i.e VS Max protection.
So 2 Modes are there for Strong & Max protection.

Scan & Allow Mode was kinda easy mode i.e scan only mode i.e blacklist + VoodooAi only. So it was kinda VS easy mode with scanners/scanning only.
So VS had something for everyone i.e ---
Those needed max protection can use Always ON Mode.
Those needed strong protection can use default Smart Mode.
And those needed only VS scanners i.e blacklist & VoodooAi only can use Scan & Allow Mode.

So I think bring back Scan & Allow Mode & no need Auto Mode or keep Auto Mode & Scan & Allow Mode both.

 

Interesting, yesnoo. I'm looking for something that stays very quiet, unless really necessary, as my wife will not be able to cope with pop-ups. She already has a nervous breakdown with non-security pop-ups.

 

Voodooshield

For the past month on and off I've been testing Voodieshield on Virtualbox with Insider Preview 14279.
The last 2 beta versions were giving me .net errors, seen 3.15 so decided to do a clean install.
It worked so decided to give it a test.

Setup: Windows Firewall block Inbound & Outbound, Windows Defender, Voodoshield, Umatrix block 1st & 3rd party frames- block 3rd party scripts.
Downloaded 30 samples from Malwaretips Virus Exchange.
What samples were left after Windows Defender didnt pickup I
1) Sent to Cuckoo Sandbox so that worked or
2) Local sandboxed or.
3) Followed the new GUI AI instructions pop up and mostly quarinteened them on advice.

Scanned with Zemana and Malwarebytes ALL clean.

Note: Did a mistake and hadn't set the outbound firewall rule to block, so any nasty stuff could off called home but were picked up even before
they could connect.

This could be my new setup, but might add pumpernickel and memprotect when they mature.

Keep up the good work and I will keep testing until it is out of beta

Best Regards

Themorpethian

 

http://www.pcmag.com/article2/0,2817,2422274,00.asp
This is an old version. But it did well as you can see by the rating it got.

 

I have been curious to see how VoodooShield is as a bootup protection though this would mean putting it on Always ON mode or Scan mode(to see VoodooAI)
@cruelsister did some testing regarding the bootup protection among many well-known antiviruses, so something like what she did would be nice to see.

 

The driver of VS is loaded after the user has logged in and the GUI is started. I don't think VS has a bootup protection.

 

Quick update... I received an email just now that shows me how to reproduce the access is denied bug... I thought it was fixed, but I had no way to test it, but now I do . So VS still might freeze on certain systems... but this is cool that I have a way to test it now. I will catch up soon!

 

Here is a quick one I can answer real quick... I personally would either run Crystal Security or Webroot with VS... unfortunately for me, I am unable to run either because they remove all of my malware samples .

Then again, I have heard a lot of great things about a lot of other products like Bit Defender and a few others... I will have to make a list sometime. Thank you!

 

No need Crystal Security with VS as CS uses VT & VS too uses VT/Multiple engines.

 

BTW... the access is denied post from earlier might be a false alarm... he might have been running 3.14, and I think it is fixed in 3.15. Either way, I am on it .

 

CS focuses more on realtime scanning and VS focuses more on the computer lock concept... I think they are a great combo. I am going to activate the realtime scanner code in VS soon... but even then, I would still use a great, lightweight realtime AV like CS or Webroot. It never hurts to have a couple layers of protection, especially when all of these products are extremely lightweight.

 

Dan, will this create potential compatibility problems with AV's? Will there be an option to disable this feature if compatibility problems arise?

Thanks.

 

I have BitDefender free av, Mbam Pro,Mbae Pro,VoodooShield and Comodo Firewall.

 

I see exactly what you are saying, but I think we are going to be ok... here is why. The VoodooAi realtime scanner is only going to scan the running process... it is not going to monitor folders and files like other AV's. However, if one of these files is launched, obviously VS will block it if it is not on the whitelist. We could monitor folders, but I think that could be seen as VS trying to compete with other AV's... VS is not intended to compete with AV products, it is intended to compliment them, and simply lock the computer when it is at risk. Also, there really would not be a reason for VS to have a realtime scanner at all, except VoodooAi is pretty good at detecting zero days and unknown malware, so I thought it would be a great addition. BTW, all of the running processes on any given system will only be analyzed by the VoodooAi realtime scanner once, and then marked as clean or properly managed if they are malware. There is no reason to keep scanning the same processes over and over again with VoodooAi... the result will always be the same unless we update the algorithms. Basically, with machine learning and Ai, there is no such thing as a file later "catching a cold" (like if it is discovered later that the file has some malicious tendencies)... The features of the file do not change, and they either resemble malware, or they do not. Basically, machine learning and Ai is radically different than traditional malware detection / classification methods, but I think this is one reason it is so adept at detecting unknowns and zero days. Thank you!

 

Great choices! Yeah, I would say you are pretty darn secure .

I have a few phone calls to make, but I hope to catch up on all of the posts I missed sometime today... sorry it is taking so long.

 

Sorry to bother you Dan, but did that pop-up issue get fixed with 3.15? I've not had a chance to test that out yet. Thanks!

 

I think it is fixed! I "tested" with Rocket League for an hour our so last night just to make sure, and it seemed to work great, but if not, please let me know... there were a lot of small changes to this part of the code, so we will have to keep an eye on it. I have an emergency onsite call, I will catch up soon!

 

Everything is working good here - W10 - with 3.15 and Crystal Security is also playing nice at the moment. Thanks for that, Dan.

 

Awesome, thanks Dan! Ironically, Rocket League was the game I was playing when the issue first arose haha. It would've affected any game I'm sure. I'll give it some extensive testing, but I'm still taking your advice of only having the Training mode active for maybe two hours at the most. Cheers again for the great support.