An HIPS for Windows 10

You meant inspect children. You can run ReHIPS as an anti-exe and application control. Set the security level to permissive, put the can execute program on inspect children and toggle the can be executed on allow.

Works nicely to prevent unknowns you download from being executed, unless you allow them. In the free demo version, you're limited to sandboxing ten processes that you might want to run in isolation. A free alternative is Microsoft Defender Application Guard, which opens in Microsoft Edge in sandboxed mode on any untrusted site and extensions installed on other browsers will redirect there.

ReHIPS is both an anti-exe and a sandbox. I wouldn't describe it as a classical HIPS because its usually quiet and pop ups are rare. If you configure it according to the above recommendation, its as good as VoodooShield and CatchPulse in executable management.

 

Interesting. There's an enormous list of executables in its database and I wonder what do you exactly mean.

 

Put the browsers on inspect children and then on allow. You can have only ten processes running on the free version.

 

Actually I have two licenses for it so no problem with the number of processes.

 

OSArmor could be considered a smart HIPS. Its not going to alert you to everything on your system like classical HIPS but that's why its found a following.

 

BitDefender ATC wants to delete two legitimate applications as malware and after excluding them from scanning, it still complains they're there but since I forbade it to disinfect, all is good. FPs exist when security software that woke up goes rogue.