How about just using one set-up? Something like: - Kaspersky as AV - HMPA as Anti-Exploit - AppGuard as Anti-Executable?
*cough* Windows XP *cough* Even Mandatory ASLR will not save you on Windows XP. system dlls cannot be relocated afaik. (Just an example: Almost...
That one was fixed pretty quickly :) For the people who are interested: I will publish a blog post about this mitigation bypass in the following...
In all situations it would cost you at least one zero-day :) But I have to agree with you that Chrome is one of more secure browsers.
common sense will not save you from exploits. There is a reason why you apply patches and take other proactive measures ;)
It was just a theoretical scenario to indicate that common sense alone is not enough.
Till you hit a watering hole and get pwned by a zero-day...
- The last update should be from 2/3 weeks ago iirc - Regarding the support of a fixed set of browsers; I don't think that many companies would...
commissioning an exploit prevention comparison is also a sort of "attack". I can't blame any party, as long as a product works it's okay, I...
Should be, https://web.archive.org/web/20141218111414/http://trapmine.com/
Well, most vendors are putting effort into showing the effectiveness of their products. (Hint: "Exploit prevention comparison" on...
They have posted a new video on YouTube in which they are comparing Trapmine with AppGuard, but I don't know whether a calculator is a very...
Of course I was aware of the fact that Poweliks only resides in the Registry. But there is a difference between diskless *malware* and diskless...
I am curious what your motivation is for providing the name of a single malware family.
The solution for the paranoid is easy; just intercept all your traffic and check for abnormal patterns.
dynamic payloads != in memory payloads. Although you can perform a lot of actions using the Meterpreter functionality. Furthermore, exploits are...
1.a In the screenshots I posted earlier you can notice that it contains the same memory mitigations as EMET, HMPA and MBAE. (Yes I know, this is...
Actually you can also use a one-pc licence at the same time on two pc's, although I suppose that just accounts for one installation + one reinstall.
1. I don't know, I could not any documentation 2. I have seen machines used for financial administration that were lacking 2 years worth of patches.
Yes, HMPA offers better protection than MBAE in certain scenario's, but of course, a real multi-staged attack can be detected in multiple phases...
No one is able to provide a scientifically substantiated test without hiring a company like MRG Effitas. Because there is one thing that everyone...
I can provide an answer to that question: Isn't that the same with Antivirus? In the end you you will end with the same kind of techniques. (Yes,...
People have to decide for themselves which product is most suitable for their situation. But I can understand that companies don't want to deal...
Known 'issue'. Just don't run them at the same time.
Separate names with a comma.
