Ha, ha :) Great! I do not see the attack here: Having access to logical volume and using a disk editor will break every file-based protection. I...
How should it be possible? AppGuard is no magical snake oil software. something must protect a Private (protected) folder. At the end it is some...
Hmmm, to be honest: You should not keep your software's keys unencrypted on your disk. I would suggest to put em into true crypt (veracrypt) drive...
Tested Pumpernickel for some weeks now. This is correct Mister X, but I dont see any problem here. Pumpernickel still protect against write...
Absolutely right! Lot of security software is full of features most users do not understand and at the end this lowers overall security. In the...
Exactly, it blocks attempts of process A gaining access on process B. From this angle of view: It cannot detect an exploit as an exploit, it...
Well, @Rasheed187 yes this is what MemProtect does. It blocks attempts of (malicious) processes to gain access on them. So it can effectivley...
No! No! MemProtect can mitigate against in-memory attacks like: an exploit or malware tries to inject code into another process. There are a lot...
I think the target users are admins that shall have the time to set up rules. In my company the admins spend month of testing of new software (or...
Yes, sure. To my understanding the drivers cannot detect an exploit, they "just" block attempts. Using a HIPS/Sandbox would provide you such...
Sounds great. Will also try to dig deeper into the MemProtect drivers, seems to be worth to spend more time on. I just tried it quick and dirty,...
A good point, should be considered. Well, MemProtect is beta so we could ask Florian to change :) Also a good point here. Well, for me important...
I think it was the design he wanted to go, there was also a blog on this end 2015. If I remeber right he also argued why he choose that way....
Thanks for the updates, hints on the drivers. Pumpernickel works awesome on my Windows 8.1. Its great fun and i guess there is much to discover :-)
@hjlbx: As far as I know Florian has adjusted the price for private users. I mailed him a few weeks ago, he told that for private/non-commercial...
Great news. The beta works great on here. @Online_Sword: I think what Florian mean with .NET are attacks he posted on his blog where attackers...
Thanks for the information. It work very well on my test machine (win 8.1 64-bit). I start windows with sig. check disabled, so driver can be...
@Online_Sword: Have you copied pumpernickel.ini (and for MemProtect memprotect.ini) into C:\Windows\ To do a fresh re-install you can remove the...
Looks like Pumpernickel has been updated. I've quickly checked it on a 64-bit Windows 8.1 and it works (also on reboot). Will do more testing and...
Thanks @WildByDesign for clyrifying. I asked Florian, there is already a command line swith in the Admin Tool :) Just call "Admin Tool.exe"...
I think I know what is happening. If while start-up any process was blocked by the driver then the tray application (BouncerTray.exe) will get...
Referencing your screenshot what exactly happens - or what is the problem, maybe I do not get the whole story. is it correct that you install...
@hjlbx: Are you sure that all these processes are really started up by TrayAllication. I think something is wrong with that taskmanager...
Maybe it is caused by CCleaner?! I never had such issues and I use Windows 8.1 32-/64-bit machines. Bouncer works smooth and without any problems...
Well, fileless (in-memory) malware is hyped a bit. If you do some research and in-depth reading of articles you will find that most fileless...
Separate names with a comma.
