@wat0114 @itman Can you try this new OSA Personal pre-release version? https://downloads.osarmor.com/osa-1.5.7-setup-test1.exe You can install...
@itman NVT License Manager is a complete separate and "decentralized" product: it is used only to manage the licensing by OSArmor, Win Update...
@Buddel Now that we have completed the separation of OSA and Win Update Stop, we will start to update all our current software (SH included) and...
@itman The kernel-mode driver of OSArmor is auto-extracted in \drivers\ folder from OSArmorDevSvc everytime the service is started. This is done...
@mood thanks for updating the thread. // Everyone Here is a 30% perpetual discount on the yearly subscription for Win Update Stop (limited to 50...
We've released a new version of OSArmor v1.5.6: https://www.osarmor.com/download/ Changelog: + Added more signers to Trusted Vendors list +...
To be able to edit OSArmorDevSvc service/registry keys (are in HKLM) or terminate the process, a malware would require Admin privileges. The focus...
@itman That connections are needed to validate if a certificate is revoked or invalid and for Trusted Vendors, they are performed by Windows APIs...
Just tried now to download OSArmor setup file with Chrome and no issues. I guess it was showing the warning yesterday because the file was new...
@Dragon1952 Thanks for reporting it, I tried with Chrome and indeed it doesn't allow to download OSArmor setup file, strange. Maybe it reacts...
We've released a new version of OSArmor v1.5.5: https://www.osarmor.com/download/ Final changelog: [02-Feb-2021] v1.5.5.0 + Improved handling...
Here is a new pre-release (not final) version of OSArmor Personal 1.5.5 test3: https://downloads.osarmor.com/osa-1.5.5-test3.exe Mainly added...
Here is a new video where I test new OSArmor protection features with a few signed malware samples: https://www.youtube.com/watch?v=XUStga9CX1A...
Here is a new pre-release (not final) version of OSArmor Personal 1.5.5 test2: https://downloads.osarmor.com/osa-1.5.5-test2.exe We've completed...
@KeyPer4Life Those files are created by the package we use to add 30-days trial to the program. They are innocuous text files, nothing to worry...
@Elwe Singollo The activation is per-machine, but on previous OSA version there was an issue in the NVT License Manager (fixed on v1.5.3). There...
@wat0114 @itman I was not able to reproduce your issue yet (testing on 5 PCs and 2 VMs with just WD), may I ask what are your other security...
@itman @wat0114 Will try to replicate the issue on these days, thanks for including details. May be related to auto-updating somehow, probably...
Just a quick update, released OSArmor v1.5.4.0: https://www.osarmor.com/download/ [18-Jan-2020] v1.5.4.0 + Added new internal rules to block...
@plat1098 That is a FP, will be fixed in next version. The block rule is located in "Lockdown & Experimental" at the end of the list: [ATTACH]...
@Krusty Yes possible, or probably PrivaZer tried to delete shadow copies as part of the procedure to clean some system areas (that can be fine,...
@Buddel This should work for xls: [%PROCESSCMDLINE%: *.xls"][%RULENAME%: Block opening of .xls files] Alternatively try this:...
@Krusty Thanks for testing, will take a look at it.
@Buddel This should work: [%PROCESSCMDLINE%: *.docx" /o*][%RULENAME%: Block opening of .doc files] Basically this is the wildcard to use:...
@jmonge Great glad you like OSA =) @Buddel Can you share the blocked event from the .log file? The one that blocked also .docx
Separate names with a comma.
