Interesting read in HDS Knowledge Base: The Absolute Last, Final Word on CHKDSK Btw, they published this article 2 days ago and today the link...
Fully agree. It is really a shame for SSM & others. All the more if you realize that the protection against this kind of attack, which allows...
Quickly checked 1) only: SSM 2.4.0.618 catches driver install attempt of Process Monitor driver on my end. If you don't get a warning you have...
I suggest you should soon take another close look at ProSecurity. Current version 1.30 is already better than SSM, but the new upcoming 1.40 will...
Don't expect too much from their forum. They have converted it into a "user forum" few months ago. Now there are just customers like us and a few...
The bugs you refer to were mainly about corrupting snapshots, not stability and BSODs. Furthermore I tried this option also later on 7.2.1 builds...
I would definitely not recommend to turn it on. It can lead to blue screen crashing the OS. At least it did for me ~1 year ago. Every time I...
No doubts, Directory Opus is the most powerful and flexible file manager on this planet. I have tried most others (PowerDesk, TotalCommander,...
I checked that website and tested with ProSecurity and SSM. Both block the loading of the executable just fine. Aigle, I'm sorry, but I believe...
Are you sure RollBack's MBR was really completely gone after wiping? Did you wipe the whole disk or just the partition? I'm somewhat skeptical...
;D Yes, most likely. If you're really going to test more on this, please also try another round with backing up after clearing unused sectors with...
Thanks for sharing your results, however this solution is not really new and in essence the same what I posted 1 year ago:...
Right, it is pointless to test this in my opinion. Once you allow a kernel mode driver to load the game is over anyway. It can do whatever it...
Here is news regarding PS' failure to block this: I talked to PS developer about it and it turned out that this is caused by a bug which has been...
aigle, I think you're mixing something up here. What PS shows in that screenshot is iexplore.exe wanting to load this dll into its own process...
Confirmed. Tried also with 'Enforce protection' option set - same result. Will notify PS developer.
Hi, a new version of ProSecurity has been released with big improvements in many areas. The most exciting addition for me is PS now has full...
Rule1 refers to the keys whereas Rule2 refers to the values in these keys. SSM needs separate definitions and rules for key and value, other than...
(a) is same in both cases, (c) is unnecessary as there is no need to elevate privileges, so only extra step remains is (b) and that is little...
Prevent writing to process memory or creating threads in other processes e.g. by blocking relevant API calls. Almost every other sandbox/HIPS...
Yes you can. Abuse trusted processes that have higher privileges. That's not what I had in mind, but even that is not unlikely as it requires only...
The mentioned ones were just examples and they do not "execute at kernel level" more than any other process does (switching CPU to kernel mode btw...
No, the one who is missing the point is you: There are ways to inject code into processes without writing something to file system or registry as...
Yes, I tested it some months ago and found it promising at first glance. However I quickly found out it lacked one of the most important features...
Gave it a very quick test. It's real kernel based sandbox. A simple one that uses no virtualization, just imposes restrictions on the process that...
Separate names with a comma.
