What I'm saying is that NS is not needed for protection against exploits. But I don't know about XSS and ABE (?) protection, it might be useful when it comes to this stuff. But disabling first party scripts, which is the main feature of NS, is about the silliest thing you could do since it will break many sites. It makes more sense to block third party scripts related to advertising and tracking, you can do this with for example Ghostery and uBlock Origin.