HitManPro Alert vrs Malwarebytes Anti Exploit Premium

I've been catching up in this thread, and some of the post are about interesting topics. I have to say I have no problem with hassle if it makes traveling by air safer.

 

Then show us, the e.g. font's option is only done via registry (global wide possible) and Hitman not offers like EMET an per-application interface to allow custom applications, it comes with it's own lists to check current installed apps and then you get some toggles.

ACL is not a complete lockdown, you can add exceptions or simply write an script to temporarily disable it, because you may want to install/test new kind of software.

I read so many about bypass here and there, I not found much in the wild, so it's just to play with the fear of people again to advertise a product which overall can be same done within windows own mechanism.

If I'm wrong show us or pm me examples, papers or something, otherwise it's just blah blah without anything. I can also make own videos to show how Hitman fails and then say it's bad, same can be done with Windows but it's not really real world situation tests. Flash is dying (and killed by Google already), Java or his browser plugin is also now official killed. I think the attack surface get's lower and lower and as shown in the past even such 'hyped' tools can't really protect against ransomware, they claim to be but it's simply impossible because they change stuff so often that it would requires databases or reputation updates each 6 hours or lower. This is not really possible. I doubt that Hitman adds magically protection against integrated windows layer, otherwise this would require an fix within windows and not with an tool. So overall we just talking about someone which execute unknown stuff as admin or in ransomware case mostly from untrusted sources e.g. email attachments.

 

We had one ransomware sample delivered through mail, disguised as sending tracker from a parcel/logistics company. Because my wife had ordered something at an online shop she clicked on it. Simpel Software Restriction Policy deny execute did block it.

For Office 2007 I use EMET's ASR to block loading: flash*.ocx;jscript*.dll;vbscript.dll,mshtml.dll;mscoreei.dll;msxml*.dl;vgx.dll;scrrun.dll. I have not found an elegant solution to block the build in dotNet execution environment in Windows 10. Until now EMET's ASR is the one which has no side effects and is most granular.

For Chrome I use MemProtect, It is a smart German solution, using the Protected processes light (build in OS-kernel) feature, so the reverse is also possible (using Windows integrated protection layer to mitigate other Windows integrated execution environment). Have you tried MemProtect? It seems to mitigate all memory intrusion simulations of the HPMA testtool (and is free).

 

what about combining Hitmanpro.Alert with Spyshelter premium?
windows 10 pro with Windows Defender.

 

So what's the verdict after 3 years?

 

If I had to choose between the two apps, my vote would go to HMP.A.

 

Could you give a little more to go on? Thanks.

 

I used both apps a couple of years ago. I did like Malwarebytes Anti-Exploit but HMP.A is much more than just an anti-exploit app, and HMP.A is still actively supported here.

 

Thanks!

Need more opinions from Wilders people.

Edit:
I am using MBAE and SpyShelter Slient at the moment.

 

Have a look at this:

https://www.wilderssecurity.com/threads/posting-policy-recommended-threads.180128/#post-1041384

 

This thread wasn't started by me and it is 4 years old. So sit down Victek.

 

No worries.

 

I not worried just want info about the subject.

 

I don't think their has been any independent exploit test conducted on MBAE and HMPA for several years so I don't know if there's a big difference in exploit protection between the two. I have used MBAE and HMPA, but I have more experience using MBAE. I have a license for each, but I currently don't have either installed. The machine I was using MBAE on died so i'm waiting to replace that machine.

I would trust either one for the extra exploit protection. I use Eset Internet Security, and adding either one to my setup would make it very difficult for any exploit to slip by. If you are looking for a solution that also provides Ransomware protection and malware protection then I would recommend HMPA, but if you just want exploit protection then I would recommend either one. Another option would be to use Malwarebytes Antimalware. It would offer the same types of protection HMPA offers. It's also compatible with most AVs.

 

I just started using Eset Internet Security + I have appguard, not really concerned about ransomware protection, just internet facing exploits.
Also use SSS anti-key logger, so using MBAE or HMPA is overkill?
Edit:
SSS is not running when HMPA is installed.

 

Oh well I thought this was the place of securities gurus. (no info after 3 years, probably both programs are garbage)

Mistaken: This is a place of scary news. Reminds me of the song in the 60's "where have all the gurus gone")

 

If you're relying on members posting their experiences I'd suggest you are only going to get opinions.

 

Indeed, mostly opinions as there haven't been exploit protection tests. HMP.A is more actively developed afaik. MBAE is only standalone as beta, for stable you have to use MBAM. In my experience, new MBAM releases since v3 have been a bit too buggy.

 

it has been my experience, too, that from v3 on, it's been buggy as heck.

 

I wouldn't say they are Garbage by any means. I have a degree in InfoSec, but I don't have much experience yet. Also, I don't have the setup at home I need to test them and it would take many hours to do it. When I get time I plan on testing Eset's firewall, maybe I can conduct exploit test at a later date.

 

For the most part people here are users who share their experience. You have to find your own answer.