Currently, I'm running all 3 in their free versions. That means MBAE only protects browsers and Java, while HMP.A doesn't have exploit mitigation. While I am beta testing, I have configured them to the limitations of their respective free versions. I'm thinking of setting them up this way: MBAE will cover the browsers, EMET will cover everything else, and HMP.A will add non-exploit-specific protection. The only problem is Java, should I double-team that vulnerable software? Currently, I have only EMET covering it, because MBAE isn't compatible with Java 8 (at least in my setup). *They're incompatible, chose MBAE over EMET. P.S. I've heard the "use one or the other" argument plenty of times, and will not regard it any further in this thread. That is unless one has proven it still applies in this specific setup during everyday activities. *Other incompatibilities with the above software, including SBIE, is welcome for side discussions. As is other anti-exploit software like ViRobot APT Shield, Crystal Anti-Exploit Protection, etc.