Reliable Review for Anti-executable Software?

Anybody knows of a professional review a la AV Comparative for AE software? I couldn't find it at all. The only reviews I've got are just stereotypical home style articles. No intention to insult those reviews, they're just not enough for me. I need a review about test reports of various AE software that is not only use EXE but also all types of executables like DLL, VBS, SYS, etc. Something that goes more in-depth. Is there any review like that? Thank you.

 

That`s a no then but a great idea anyway.

Maybe one of those wonderful companies/magazines out there could kindly see their way to putting a few A_E`s through their paces ?

 

I'm quite pessimistic that they would. Most reviews I've read about AE are kind of too soft. I mean, they just tell us about "this AE could block unauthorized EXE" but nobody really tells about how far could that AE go. A comparative review like AV Comp's would be an interesting test to read.

 

Search idea (if you haven't already tried): search for the names of a few popular solutions in this space together. A search for applocker bit9 results in links like http://windowsitpro.com/windows/comparative-review-application-restriction-products and http://foregroundsecurity.com/resou...hite-flag-bypassing-application-white-listing.

I often use this search technique in general.

 

@MrBrian

Thanks for the links.

I also have tried to search that way, both on Google and Bing. What I usually get are either home-style reviews or versus polls. There are also some in-depth old threads but that's basically the most informative ones I could get.

 

@GrafZeppelin: You're welcome .

Have you tried using Google's filetype operator?

Maybe searches at http://scholar.google.com/ might help too.

 

There's a 40 minute video for the last link in post #4 available at https://archive.org/details/shmoocon2012video.

 

Thanks. I'll see if I can find more readings as well.

 

Vulnerabilities in Application Whitelisting: Malware Case Studies

 

"Application Whitelisting: Panacea or Propaganda" - direct pdf link hxxp://www.sans.org/reading-room/whitepapers/application/application-whitelisting-panacea-propaganda-33599

 

The results of any such comparison would have to take the AE/HIPS settings into account to have any meaning. Firewalls were compared this way using leaktests. Even with firewalls that didn't include HIPS components, over half the leaktests could be defeated with tight rules. With the default rules, the firewalls failed. With AEs and HIPS, the results would be worse. Most AEs and HIPS are very capable of protecting the users system, but they will only perform as well as the user configures them.

 

Kaspersky Lab’s application control technology on top in AV-TEST trials

 

I was reading recently that European Union recommends Application Whitelisting, Updated Software, Good Antivirus for security. You will hear that stolen certificates are used to sign viruses. Novirusthanks Exe Radar Pro will prevent any exe to run if you do not allow it to run explicitly. You can see youtube videos proving the technology.