new hot stuff !!!! read how to increase regdefend protection

Discussion in 'Ghost Security Suite (GSS)' started by tayasimggg, May 25, 2005.

Thread Status:
Not open for further replies.
  1. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    (all my info is in recommendation only)​
    new for regdefend users, with my blessing:

    all in one additional ready to use groups to enrich the most powerfull security
    product ever made for windows registry. regdefend will now be able to do the new protection tasks:

    1)Block RegHistory (after I research and monitoring cleaning programs)
    2)Hide Windows ID (all versions)
    3)protect Winsock (protect all Winsock critical Entries from unwanted modification)
    4)Deny nonedos application from read network cards physical address
    5)additional RegRun (originaly written by puff-m-d)

    all you need to do is:
    a)rename the groups.txt file to groups.zip
    b)extract all ghst files to the groups in the regdefend installation folder.

    update in 26.5.05 all previous problems in my file fixed...

    please please replay me back your opinion !!!!!!
     

    Attached Files:

    Last edited: May 26, 2005
  2. voirdire

    voirdire Registered Member

    Joined:
    May 26, 2005
    Posts:
    13
    Can someone explain and validate this topic?
     
  3. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    explain what exactly? :p
     
  4. richrf

    richrf Registered Member

    Joined:
    Dec 11, 2003
    Posts:
    1,907
    Hi,

    Interesting. I await the opinion of experts.

    Rich
     
  5. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    i made the group v1.0 myself except the additional regrun file
    so if you what to ask just ask me.
    and i wait for the experts opinion also to know what they think on the new ghst files.

    coming soon ver 1.1 with easy installtion engine and more ruls.

    patience my friends.
     
  6. Vikorr

    Vikorr Registered Member

    Joined:
    May 1, 2005
    Posts:
    662
    Tay

    I think the scepticism stems from the method by which you want people to install this file ie. renaming it to a zip file to extract .ghst files, instead of just delivering a ghst file :)

    Also, there was a bit of a sales pitch in the way you presented the information, which makes people a little more wary still

    Hope it helps

    PS. I would also advise against delivering these files in an 'installation engine', where people can't see what they are running, from an unknown source.
     
  7. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    To help with the scepticism....there are 5 .ghst files and the reason Tay chose to upload these in this manner....IMHO....is because they would be uploadable to Wilders as a txt file....which is one of the Valid extensions We accept.

    When downloaded....you then change it to .zip....and upon extraction you have 5 valid fairly decent .ghst files.

    additional RegRun.ghst
    Block RegHistory.ghst
    Deny read none-dos read MAC.ghst
    Hide Windows ID.ghst
    protect Winsock.ghst


    Correct me if I am wrong Tay....and thanks for putting those together.

    Regards,
    Bubba
     
  8. Vikorr

    Vikorr Registered Member

    Joined:
    May 1, 2005
    Posts:
    662
    I think that's all people were looking for :)
     
  9. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    look Vikorr, i am not sale department and i am not have any interest in sale regdefend. i am only try to help promote it one step forward, because i believe in that product.

    and i am going to upload an instalation engine to be a more friendly to novice users. so try to trust me a bit. and help me find bugs in the v1.0 files by trying them.

    thanks i love you all fox :D
     
  10. Vikorr

    Vikorr Registered Member

    Joined:
    May 1, 2005
    Posts:
    662
    Tay

    what I said was not meant as a criticism, but a simple explanation of the responses you recieved.

    It appears to me, that the people asking for 'validation' were wanting verification that your attachment wasn't malware.

    This is not a slur on you, as no doubt you are only wanting to help out...however as people don't know you, nor your intentions... a little caution is always understandable.

    I do believe you only want to help :)
     
    Last edited: May 26, 2005
  11. richrf

    richrf Registered Member

    Joined:
    Dec 11, 2003
    Posts:
    1,907
    Hi all,

    Yes, I agree. Thank you tay and every other forum member who has been so generous with their time and efforts.

    I believe, that in order to maintain the high level of security that RegDefend offers, that the mods for this group should set up a formal procedure for disseiminating any new file submissions including any warnings (especially for new members), additional information regarding what testing has gone into the new submissions, and its appropriateness for different environments (e.g. multi-account, administration vs user accounts, etc.). Since this is the official support site of RegDefend, new members may take any download that is available as being officially sanctioned by the company and the forum.

    I am sure that all of the security professionals on this forum and all those who have very generously offered to share their work with others, will agree that some standard approach to submitting and offering additional Registry Groups is important in order to maintain the value and trustworthiness of the RegDefend software.

    Any comments would be greatly appreciated.

    Rich
     
  12. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    Agree totally with your thoughts and\or suggestion.
     
  13. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    whan i worked on those rules, i had some problem to insert them without to disturb windows to function normaly. and i some time spend my time until morning light when i needed to go to work already.
    so what i am trying to say is that i come to a point that the ruls currently work in my opinion in optimal condition.

    but i believe like all first version it might be not perfect yet.
    :rolleyes:
    and as far as i know it is adjusted to work in windows 98/2000/xp/2003
    exsept the 64bit ver that i dont have the option to chack with.
    :eek:
    and i dont need have a worning it seems to be safe to install it.

    waiting to your criticism about it effective or any other question.
     
  14. Cluessnewbie

    Cluessnewbie Guest

    Yes, when you are clueless it makes only sense to be very suspicious until someone expert you trust clears it.
     
  15. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    OK be suspicious... :cool:
    i am also paranoied person and i am totaly understand you.
    so don't install the files.
     
  16. gottadoit

    gottadoit Security Expert

    Joined:
    Jul 12, 2004
    Posts:
    601
    Location:
    Australia
    tayasimggg,
    Have you thought about writing a post detailing what is in each group and why you added it ?

    Regards
     
  17. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    explanation:
    the files is intended to add registry other observation point in a places that is considred to be windows weakness in the security and users privacy not monitoring by the regdefend default rules.

    so i made the expansion pack "group v1.0"

    it is a rules that i made using monitoring programs to faind as meny weekness as i can and in aditional i copy the action made by cleanig programs.
    the regrun program ruls that is made by puff-d-m is added to the pack also.

    1)Hide Windows ID.ghst is like it sound make you in a "ghost mode" and you can't be marked by the windows serial. it is not disrupting windows update.

    2)Block RegHistory.ghst was made in order to block recent action user do in the windows it self and it is currently support
    a)) nero
    b)) user login detail's
    c)) windows management consol
    d)) office all versions
    e)) windows search assistant
    f)) ms Wordpad
    g)) ms paint
    h)) all explorer action
    I)) direct 3D
    j)) direct draw
    k)) Winrar
    L)) windows netshow player.
    M)) internet explorer address typing

    it will support more appliction in the next v1.1 coming soon.

    3)protect Winsock.ghst will give you a protctin from virus from monitoring the winsock.

    4)Deny read none-dos read MAC.ghst was made in order prevent the scenario of a spy sending your network card addres to the internet.

    ok any questions?? :D
     
    Last edited: May 27, 2005
  18. Infinity

    Infinity Registered Member

    Joined:
    May 31, 2004
    Posts:
    2,651
    Thanx Taya for this effort and I included it to be honest :) together with my own and Puffies, Tony's lists it is getting quite comprehensive .. still with the same amount of cpu/mem used :)
     
  19. richrf

    richrf Registered Member

    Joined:
    Dec 11, 2003
    Posts:
    1,907
    Hi Tay,

    Thanks! I see that you have put a lot of thought into this project. It is a very interesting way to develop a security defense for a machine. It will be interesting to see how the different approaches (e.g. Puff, Tony's, yours, etc.) comes together.

    Thanks again for sharing your efforts and documenting the purpose of your entries.

    Rich
     
  20. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    thanks fox :D
    but i dont know tony's list... can you upload it here please?
    i am still working on the 1.1 group ver it will be a big progress i hope.
     
  21. richrf

    richrf Registered Member

    Joined:
    Dec 11, 2003
    Posts:
    1,907
  22. [suave]

    [suave] Registered Member

    Joined:
    Apr 5, 2005
    Posts:
    218
    toda raba taysim :)

    I love all you people who post ghst files :D
    Thanks to all you guys for your hard work!

    We should make a sticky thread where only the people who post their ghst files are allowed to post there. And then that way they can keep updating their files by editing the post and all the ghst files will be in one easy place to find. Just a thought.
     
  23. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
  24. tayasimggg

    tayasimggg Registered Member

    Joined:
    May 3, 2005
    Posts:
    102
    Location:
    israel
    keep me up to date in that idia if it will be active.

    tell the programmer to to consider add it to regdefend installation. it will be a good for the selling.
     
  25. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    2,825
    Hi Tay,

    I think you should coordinate your efforts with Tony, Puff, and Jason.

    I just setup your 5 ghst files, but after doing so, was getting repeated pop-ups regarding things that were blocked.

    I appreciate your efforts so please don't take this the wrong way, but on my system anyway there were far too many alerts by things that were either blocked or not being read.

    If you need more info, I can set it up again and try to get a log to you if you are interested. :)

    Best Regards and keep up the good work!

    Jag
     
Thread Status:
Not open for further replies.