HitmanPro.ALERT Support and Discussion Thread

Discussion in 'other anti-malware software' started by erikloman, May 25, 2012.

  1. guest

    guest Guest

    At some point I remember someone said they protect against exploits but with different approaches so they could work together.
    If this is not the case I would keep HPA
     
  2. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    14,866
    You can run both programs together, but HMP.A is taking over and MBAE has basically "nothing to do" and is only protecting applications which are not in HMP.A's applications list.
     
  3. Cch123

    Cch123 Registered Member

    Joined:
    Oct 27, 2013
    Posts:
    15
    Many of their exploit mitigation features overlap and are based on the same principles. Implementation wise might be slightly different, but this is not significant enough to run both at the same time and risk compatibility issues as others have already said. In fact, if both hook the same functions they can cause compatibility issues at best and miss an exploit attempt both should have blocked at worst.

    HMP.Alert has some useful unique features though, which I find seals the deal between the two :)
     
  4. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    6,791
    Location:
    Among the gum trees
    Over 24 hours and no reply so I guess they have enough beta testers. :isay:
     
  5. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    5,783
    Location:
    Europe then Asia
    or too much requests and must select the trustful ones.
     
  6. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    3,507
    Location:
    Under a bushel ...
    They sent me the link but (I should've known) it doesn't have co-signed driver yet so I'll pass.

    Would it be legit to pass mine on to you?
     
  7. askmark

    askmark Registered Member

    Joined:
    Jul 7, 2016
    Posts:
    371
    Location:
    united kingdom
    It depends if they are keeping a record of which wilders members have been accepted as closed beta testers.
    Personally I would not pass on the link to anyone else as it breaks the trust between the two parties.
     
  8. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    6,791
    Location:
    Among the gum trees
    Probably not. Thanks though.
    Hmm, maybe. I never thought of myself as untrustworthy before today.
     
  9. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,346
    But they have to sort through the many thousands of untrustworthy ones, until they find your name...
     
  10. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    6,791
    Location:
    Among the gum trees
    Yeah, that's OK. I can only ask to try the new version, but I'm not about to beg for it. Erik and Mark have allowed me to test private betas in the past so I doubt they distrust me.
     
  11. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    3,507
    Location:
    Under a bushel ...
    Yeah. I suspected it would be dodgy. :cautious:
     
  12. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,057
    Location:
    the Netherlands
    It's weekend. I suppose Erik really needs these days off, to get some rest.
    Perhaps you'll get a reply after the weekend.
     
  13. askmark

    askmark Registered Member

    Joined:
    Jul 7, 2016
    Posts:
    371
    Location:
    united kingdom
    It was a kind gesture though :thumb:
     
  14. anon

    anon Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    5,812
    "through the many thousands" ..... even the replies are not so many =
     
  15. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,346
    I was just joking. I think the weekend explanation is more likely to be true.
     
  16. guest

    guest Guest

  17. anon

    anon Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    5,812
    +1
     
  18. Crystal_Lake_Camper

    Crystal_Lake_Camper Registered Member

    Joined:
    Mar 20, 2016
    Posts:
    88
    co signed driver or not , it did run fine on my windows 10 x64 creators build without issues ;)
     
  19. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,296

    NO!!!!
     
  20. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    6,791
    Location:
    Among the gum trees
    It's OK Pete. No-one passed on any links or private versions of Alert.
     
  21. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,296
    Hi Krusty

    As it should be.
    Thanks Krusty. I was just making sure.
     
  22. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    6,791
    Location:
    Among the gum trees
    :thumb:Thanks Mate.

    Cheers!
     
  23. Gapliin

    Gapliin Registered Member

    Joined:
    Feb 12, 2012
    Posts:
    80
  24. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,057
    Location:
    the Netherlands
  25. markloman

    markloman Developer

    Joined:
    Jan 25, 2005
    Posts:
    522
    Location:
    Hengelo
    Protection against file-less attacks like PowerShell are already in HitmanPro.Alert. They are covered by our Application Lockdown mitigation, part of Exploit Mitigations.
    As of build 704 we did improve Application Lockdown for Browsers to block e.g. a Microsoft HTML Application (HTA) that spawns a PowerShell, but other than that we are already in very good shape against file-less attacks.
    Big difference between our approach and that of some others is that you do not need to configure anything. Admins can still use PowerShell but any unusual attempt, like running PowerShell from a Browser, Office or Media application, will result in HitmanPro.Alert blocking that PowerShell script.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.