DefenseWall Single Product Reviews

Discussion in 'other anti-malware software' started by LoneWolf, May 27, 2009.

Thread Status:
Not open for further replies.
  1. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,408
  2. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,127
    Location:
    USA
    Thanks Lone Wolf. Would have liked to seen more details on the malware tests. Overall good review though.
     
  3. Ed_H

    Ed_H Registered Member

    Joined:
    Nov 10, 2004
    Posts:
    662
    Location:
    Chicago, IL
    Thanks for the link LoneWolf.

    Overall an excellent review...congrats to Ilya. :thumb:
     
  4. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    100% on zero day threats, what else had you expected :D
     
  5. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Did they ask for support? If I'm unaware of a problem, I can't fix it.
     
  6. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    meaning everything is ok;) :thumb:
    nothing broke here so far since i got DefenseWall for about a year:thumb:
     
  7. Creer

    Creer Registered Member

    Joined:
    Jun 29, 2008
    Posts:
    1,345
    Excellent review, congratulation Ilya!
     
  8. SIR****TMG

    SIR****TMG Registered Member

    Joined:
    May 31, 2004
    Posts:
    757
    Great thanks:thumb:
     
  9. Tony

    Tony Registered Member

    Joined:
    Feb 9, 2003
    Posts:
    722
    Location:
    Cumbria, England
    Well done Ilya.
    You deserve all of the accolades for the tireless work for your product :thumb:
     
  10. Longboard

    Longboard Registered Member

    Joined:
    Oct 2, 2004
    Posts:
    3,187
    Location:
    Sydney, Australia
    @Ilya: Yes: Nice review congrats. Didn't really cover anything anyone didn't already know. :)
    I hope this helps raise the profile.
    They could have expanded some comments re Developer who never sleeps. :D

    Re:
    o_O
    Is that a typo, or am I missing something ??

    oops; Had to correct my own typo. :p
     
  11. Thiggy

    Thiggy Registered Member

    Joined:
    Apr 16, 2005
    Posts:
    82
  12. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Most of software can be installed as untrusted. DefenseWall is designed this way. This will gives no protection for the files and registry keys, but it is possible.
     
  13. arran

    arran Registered Member

    Joined:
    Feb 5, 2008
    Posts:
    1,139
    With av-comparatives.org showing defense wall, this could make defense wall
    more popular on the internet. The problem with this is it could create a target for malware writers to try and find ways to bypass defense wall, so we could end up with malware on the net able to bypass defense wall. even tho this may only be a small possibility atm but personally I prefer the powerful abilities of defense wall to remain a secret only to a few rather than it becoming as popular as normal AV's. The last thing we want is hackers and malware writers finding ways to bypass sandbox programs.
     
  14. demoneye

    demoneye Registered Member

    Joined:
    Dec 30, 2007
    Posts:
    1,356
    Location:
    ISRHell
    av-comparatives.org is for avs arran :mad:
    why u think DW should even get there ? its NOT avs :D
    i think arran need to get 1 weak (ban) vacation for stupid spreading :cautious:

    cheers
     
  15. Longboard

    Longboard Registered Member

    Joined:
    Oct 2, 2004
    Posts:
    3,187
    Location:
    Sydney, Australia
    @Ilya; ah yes, see it now; I interpreted that as a 'test' of 'untrusted' o_O
    Thanks
     
  16. arran

    arran Registered Member

    Joined:
    Feb 5, 2008
    Posts:
    1,139
    I stand corrected then, Defense wall has not at all been mentioned on av-comparatives.org. because like you say it is not an AV.
     
  17. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Pity they didn't test if any malware droppers can be harvested with ease and complete safety like you can with the best security app ever in being Sandboxie. :thumb:
     
  18. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Please stop your Sandboxie troll behaviour, this is a DefenseWall thread, go parroting Sandboxie elsewhere or put a sock in it :thumbd:
     
  19. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Pity they didn't test if any malware droppers can be harvested with ease and complete safety like you can do with only one other security app that happens to be the best available.
     
    Last edited: May 28, 2009
  20. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    i geuez franklyn likes sandboxie alot like i do like defensewall but he got in the wrong place and in the wrong time:argh:
    maybe he didnt noticed that we are celebrating another defensewall's victory here:argh: :D :) :thumb:
     
  21. icr

    icr Registered Member

    Joined:
    Sep 6, 2008
    Posts:
    1,588
    Location:
    Mumbai
    Hello,
    Can anybody explain why I am getting this error ??
    Is DefenseWall incompatible with KIS 2010 ??
    I have selected allow option from it.
    Everything is working fine till now.
     

    Attached Files:

  22. lu_chin

    lu_chin Registered Member

    Joined:
    Oct 27, 2005
    Posts:
    294
    I believe the original Defensewall setup file is packed as a self-extracting rar file. During installation, it extracts another setup executable into a subdirectory inside the user's profile directory (shown partially as c:\documents and settings\.... in your picture). The setup executable will then install DW's driver into the Windows system32 directory and KIS finds this driver creation suspicious. KIS is doing its job here but the DW driver is legit also, so an Allow operation is OK.

     
  23. kareldjag

    kareldjag Registered Member

    Joined:
    Nov 13, 2004
    Posts:
    622
    Location:
    PARIS AND ITS SUBURBS
    Hi,

    Just a few subjective comments.

    "Even though a protection rate of 100% was achieved at this test, it should be clarified that in reality, there is no 100% protection with any product. "
    Any serious test methodology should be elaborated to validate this affirmation:100% security is off course an Heresy.
    Any tester should forget testing if he can not defeat/bypass/evade/elude/escape the product he wishes to test.

    "What should be emphasized is that the soft-ware should be regarded as being a supplement to an Anti-Virus product and not as a replacement."
    Fully subjective comment which can be discussed under technical perspective.
    Fully subjective because AV-Comparatives (like most av test organizations) plays the game of the AV industry since its creation.
    Fully subjective for interest conflict reasons: financial deals/partnerships between AV editors and the AV test organizations.
    Technically, an antivirus is not necessary in combination with DefenseWall: it is not a question of product, but mainly a question of user (skills/experience/habits).
    For a P2P user who often download cracked video games for instance, an av is more suited.
    For a basic use of the computer, or for an experimented user, an av is not necessary, and DW is self-sufficient by itself (case of Ilya who-correct me if i'm wrong-does not use an antivirus).
    I would personally recommend a rollback/instant recovery solution as plus to DefenseWall.
    On the other hand this review is not intended for technicians and experts but mostly for the mass, and in this case AV Comparatives comments are totally legitimate.

    "DefenseWall HIPS does not block e.g. buffer overflows (so far), phishing attacks, Internet connections/browser hijacks. "
    It is of course not new.
    DW does not protect against BO simply because Softsphere sells a specific product (Defense Plus) devoted for Buffer Overflow protection.
    More over, most HIPS are designed, as suggested by the terminology, to protect the local host against intrusion by malwares.
    And most HIPS, for desktop or corporate environment, are vulnerable to many client-server side attacks.

    I might be wrong, but this review has been done with a little financial donation from Softsphere.
    Now very jalous i am waiting for the 500 kg of Beluga, a set of Matrioshka made in gold and diamond, and 100 bottles of Diva vodka for my friends...
    More seriously, with Ilya (as for many HIPS dev. like Ivo/AntiHook, Vassili/SSM or Mike/OA) i have not been confronted to the pathetic ego and the bad faith of some big av editors devs: once an issue is reported, he takes a look at it and come back a few hours later with a new fixed version..maybe because he knows that security soft development is a Sisyphus job...
    It's highly difficult to design a very effective security soft (AV or HIPS or firewall) that will combine ease of use, freedom and limited user interaction.
    DefenseWall is one of them (Sandboxie, Geswall, BZ and PrevX can also be mentioned).
    No time to look seriously to DW in order to answer by ABC to Ilya one years old PM, but more isolation with virtualization and more browsers restrictions would not be too much for improving the security features.

    Rgds
     
  24. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Donation? It's not a secret, I suppose, that, nowadays, all the AV-Comparatives tests (at least, single-product test definitely) are paid. But I doubt Andreas hides problems of the products tested. The MS Installer issue, discovered by the tester, was here and displayed with the review.

    As about samples testing- it's quite hard to find one can penetrate DefenseWall. :rolleyes: And I do my best to keep the things this way.
     
  25. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Remember this Ilya from several years ago.
    I will ask clearly and conciseley:

    Is it possible to havest any malware droppers in complete safety if allowed to execute as trusted or untrusted?
     
Loading...
Thread Status:
Not open for further replies.