What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. guest

    guest Guest

  2. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    You can edit recent posts but not the old ones.
     
  3. guest

    guest Guest

    i see...Thx.
     
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    You're welcome :)
     
  5. guest

    guest Guest

    Windows 10 CU Home Built-in security :

    Machine hardening:
    - BIOS Password

    System Hardening: (block 90% of malware)
    - SUA
    - UAC Max with credentials prompts.
    - Smartscreen set to block
    - Only allows Apps from Store.
    - Deny elevation of unsigned executables.
    - Windows Defender with PUP Enabled.
    - Javascript disabled.
    - Powershell scripts disabled
    - Windows Features removed: Internet Explorer, XPS; SMB, Legacy Features, Media Features, etc...
    - several services disabled.

    Network Hardening
    - Windows Firewall with customized settings : all profile's connections blocked + disabled/added rules , etc...
    - IPv6, homegroup, tunneling, -related features removed/disabled.
    - Simple DNSCrypt

    Privacy Hardening: (for the fun)
    - unused Win10 setting related to privacy disabled.
    - O&O Shutup 10 customized
    - Softether VPN with VPNgate

    Browser
    -
    Chrome x64 with various security tweaks (Appcontainer enabled, etc...)

    3rd Party Security Softs: (to block the 9.99% left :p )
    - ReHIPS : Sandox+ Application Control set on Lockdown Mode + personal tweaks
    - AppGuard : Corporate grade SRP set on Lockdown Mode + personal tweaks
    - Adguard for Desktop: Adblocker with custom filter and "stealth" features enabled.

    System Recovery
    - Rollback RX
    - Windows Backup
     
    Last edited by a moderator: May 3, 2017
  6. russ0408

    russ0408 Registered Member

    Joined:
    May 16, 2010
    Posts:
    40
    Location:
    On. Canada
    Gees guest that's like Fort Knox. lol
     
  7. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Hi @guest
    Do you disable script engines, javascript in browser, or do you use some other mitigation?
     
  8. Quassar

    Quassar Registered Member

    Joined:
    Oct 19, 2011
    Posts:
    251
    Location:
    Poland
    @guest
    Can you pm more more detail what did you off
     
  9. Jahaveli

    Jahaveli Registered Member

    Joined:
    Apr 22, 2017
    Posts:
    1
    Location:
    Canada
    what other tweaks do you have for chrome besides appcontainer?
     
  10. guest

    guest Guest

    reg tweak for active scripting in browser; old tweak i use to implement. :)

    Was the goal ;)
    You can see with all the built-in tool of Windows and tweaked settings, i could ditch every security apps, and the chances to get infected will still be extremely low.
    What exactly?
     
    Last edited by a moderator: May 3, 2017
  11. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    1. Norton + MB 3.1 + HMP.A + VoodooShield
    2. Avast free + MB 3.1 + HMP.A + VS
    3. Norton + MB 3.1 + VS
     
  12. plat1098

    plat1098 Guest

    May I ask if you have Creators Build and if so, are you still using EMET with success?
     
  13. CHEFKOCH

    CHEFKOCH Registered Member

    Joined:
    Aug 29, 2014
    Posts:
    395
    Location:
    Swiss
    Rippa EMET! :p
    This never gets fixed because EMET is end of life product but don't worry WD already address several EMET features already, like the improved 'Threat-protection' mechanism (which also includes several ROP checks).
     
    Last edited: May 5, 2017
  14. Crystal_Lake_Camper

    Crystal_Lake_Camper Registered Member

    Joined:
    Mar 20, 2016
    Posts:
    121
    windows 10 creators build x64 :

    realtime : avast free hardened mode - zonealarm free firewall - hmpa
    on demand : eek - mbam - zemana anti malware premium ( realtime disabled )
    chrome : https evrywhere - I don't care about cookies - lastpass - privacy badger - bitdefender trafficlight
    network hardening : dnscrypt
    systemhardening : hardconfigurator
    privacy : o&o shutup 10 / spybot antibeacon
    TigerVPN
    adblock : adguard premium desktop
     
  15. plat1098

    plat1098 Guest

    https://www.wilderssecurity.com/threads/what-is-your-security-setup-these-days.111264/page-1541

    post #38523. This is an antivirus-free setup that I can only admire from (very) afar. It is pre-Creators Update, though, which is why I asked.

    CHEFKOCH quote: This never gets fixed because EMET is end of life product but don't worry WD already address several EMET features already, like the improved 'Threat-protection' mechanism (which also includes several ROP checks).

    I know about EMET. :'( Page 543, post #13565 in HMPA thread:

    plat quote: I used EMET while running Windows 8.1. :) ........ I checked and EMET 5.5 is supposedly compatible with Windows 10, even though many of its features have already been absorbed. Like many others, I really want an anti-exploit so I thought I would experiment with it in Creators Build. EMET is bad on here, end of story. :'(
     
    Last edited by a moderator: May 5, 2017
  16. WildByDesign

    WildByDesign Registered Member

    Joined:
    Sep 24, 2013
    Posts:
    2,587
    Location:
    Toronto, Canada
    I am running Creators Update but I am not using EMET at the moment. However, I have run EMET on Creators Update previously for a few weeks without any issues at Max settings plus unsafe system-wide forced ASLR enabled. EMET is expected to be inoperable on the next major upgrade to Windows 10..
     
  17. mekelek

    mekelek Registered Member

    Joined:
    May 5, 2017
    Posts:
    518
    Location:
    Hungary
    OS: Windows 10 Pro 64bit CU
    UAC: Maximum
    SmartScreen: Enabled
    Anti-malware: Hitman.Pro.Alert, VoodooShield (Premium), Zemana AntiLogger
    AV: Kaspersky Internet Security 2018
    Backup: Macrium Reflect, AOEMI Backupper Professional (2-3 times a month)
    Cleanup: CCleaner
    Password Manager: Keepass2
    Browser: Chrome with UBlock Origins, Avira Browser Safety
    Freezing: Shadow Defender
     
  18. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    LOL, my setup is much simpler, without using any native Win security features. :D
     
  19. guest

    guest Guest

    hahahaha , simplicity's definition depend of the individual , i like tweaking the OS so to me it is simple ;)

    I always prioritize built-in stuff, at least it is free and don't mess with the OS (if properly done) :p , then i add what i believe is missing for my needs (hence the security softs).
    obviously, i could ditch AG and REHIPS, but i will be bored in less than an hour , nothing to play with :argh:
     
  20. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Testing this setup and like it so far but IS NOT everyday production environment machine. That one is 8.1

    Thought that this might be too heavy but not so.

    Note: Always been a proponent for multi-layering.

    OS: Windows 10 Enterprise 64bit

    ALWAYS-ON ACTIVE OPERATIONS
    HIPS: COMODO FW (w/combo of cruelsister + guest settings)
    Isolation: Comodo FW (Auto-Containment), Appguard (Medium)
    Monitoring: FileChangeAlarm (Yes, Windows 98 Activity Logging Directory/Files in Real-Time per folders/extensions)
    Anti-Exe: ERP
    Anti-Virus: NONE

    MANUAL OPERATIONS

    Virtualization: Sandboxie, Shadow Defender (On-Demand ONLY)
    Backup: Macrium Reflect, Drive Snapshot (as needed)
    Registry: RegBak, Tweaking.com RegBackup (as needed)
    Browser: Chrome, Other Portables ONLY
     
  21. NSG001

    NSG001 Registered Member

    Joined:
    Jul 14, 2006
    Posts:
    682
    Location:
    Wembley, London
    @EASTER
    Tell me more please of these 'settings', does this guest still use CFW, as i do not hear him woffling so much about CFW these days ?
     
  22. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Don't think so according to a really recent post from just this week. Some issue/bug which is a nag from what I gather.

    But the settings guide at MalTips is just enough to get the feet wet and you can take the rest from there easily .

    Apply and Test also cruelsister's approach via those respective vids on some CFW maneuvers to reveal a happy camper using/testing CFW IMO.
     
  23. NSG001

    NSG001 Registered Member

    Joined:
    Jul 14, 2006
    Posts:
    682
    Location:
    Wembley, London
    @EASTER
    Yes i use sister's settings for a long while now with good effect.
    Really don't feel the need for more tweaks.
    Thanks muchly tho'.
     
  24. guest

    guest Guest

    Indeed i don't use Comodo this days because the 10 years old "disappearing rules" bug... and in the meantime i shifted to SRP (and anti-exe) what does simply what i wanted to do with Comodo.
    My settings are still valid, it is basically Paranoid Mode (all modules active) with limited TVL and rules/rulesets/registry customization and Vulnerable Processes monitoring to ensure blocking most know vector attacks.
    On MT we were a handful of Comodo experienced users sharing our setting and observation, most of us had now ditched it , for Appguard, ReHIPS or other simpler and more effective solutions.

    Maybe on day i will go back to CIS when the bug will be fixed. It was my first love anyway :p
     
  25. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    I use them both: Sandboxie all the time for normal browsing, and Shadow Defender on demand for risky browsing. As someone already mentioned SD is excellent to test programs, nowadays most of them don't require a reboot. My security setup is listed in my signature + Sandboxie (with restrictions) + Shadow Defender V.665 (on demand) + Avira Pro (mainly to check downloads and USB flash-drives)
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.