That is called "Anti-Executable", block all non-whitelisted executables by default and it will be quite effective.
As a side note regarding the effectiveness of exploit mitigation software and the results of independent tests: Popping shells with a bunch of...
A while back I had a similar issue when running Free Flash Decompiler directly from Chrome after download. I suspect that this is the same issue.
Actually he seems to know what he is talking about. I was able to verify his MBAE disarm about half-a-year ago with a different PoC...
Because @r41p41 is not the only one who has been bypassing exploit mitigation tools.
@VoodooShield @VladimirM , Looks like a Full Disclosure: http://casual-scrutiny.blogspot.in/2015/10/poc-or-it-didnt-happen-for-appcert.html
It is nice to see that MS is still maintaining EMET, although no new ground breaking mitigations have been added since the release of EMET 5.0...
Actually the answer seems to be no. Most discussions on Wilders are not based on research performed by forum members. Although some time ago I...
10 million Zimbabwean dollar :D
@r41p41, Welcome on Wilders. It's nice to see people who are aware of the limitations of security products. :)
EMET only offers protection till the moment that an attacker has developed bypass techniques for it. If someone knows what he is doing then EMET...
I wouldn't call tracking cookies an actual infection.
Correct, but the free version of MBAE also doesn't cover MS Office or Adobe Reader ;)
When it comes down to the level of protection that they offer they should be pretty similar. If one knows how to bypass one tool then the rest...
bump
The problem would be running WinXP SP2, which lost support over 5 years ago. (https://support.microsoft.com/en-us/lifecycle?C2=1173) Do not expect...
I do not expect anything else from a free product, developers and analysts also have to get paid.
Yes, I also noted that. (Reason enough to not yet install 3.1 beta)
EMET's heap spray protection only consists of pre-allocating certain regions of memory, however it is pretty useless as one can take any other...
It depends. Win10 + KIS should be enough if you don't run any random executable. Otherwise you can always look at: anti-exploit, anti-executable...
How much effort to you want to put in to hardening your current set-up? That's the main question which first has to be answered.
@ZeroVulnLabs Could you describe the changes that certain new mitigations have brought? I am especially interested in seeing what type of...
I do not think that re-sharing software owned by a 3rd-party, but that is another point. May I ask why EMET 4.1 or 5.2 do not satisfy?
Did you test a set-up with HMPA, SBIE and Edge yourself?
1. The report from AV Comparative you're linking to has been commissioned by MS. 2. Because you like test results from AV Comparative, here are...
Separate names with a comma.
