Advanced Security Carl fish security config 2023

Status
Not open for further replies.
Last updated
Nov 26, 2023
How it's used?
For home and private use
Operating system
Windows 11
Other operating system
pro
On-device encryption
BitLocker Device Encryption for Windows
Log-in security
    • Biometrics (Windows Hello PIN, TouchID, Face, Iris, Fingerprint)
Security updates
Allow security updates and latest features
Update channels
Allow stable updates only
User Access Control
Always notify
Smart App Control
Evaluation mode
Network firewall
Enabled
Real-time security
sophos intercept x
cyberlock pro lifetime
Firewall security
Other - Internet Security (3rd-party)
About custom security
Enabled Core Isolation
enabled Force randomization for images mandatory (ASLR)
Periodic malware scanners
malwarebytes
Malware sample testing
I do not participate in malware testing
Environment for malware testing
n/a
Browser(s) and extensions
Microsoft Edge
Firefox
ad guard lifetime
Secure DNS
default DNS
Desktop VPN
none
Password manager
Last Pass
File and Photo backup
macrium reflect 8 home full system images
System recovery
external hard drive
macrium reflect 8 home full system images
Risk factors
    • Browsing to popular websites
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Logging into my bank account
    • Downloading software and files from reputable sites
    • Streaming audio/video content from trusted sites or paid subscriptions
    • Streaming audio/video content from shady sites
    • Downloading malware samples
Computer specs
Processor AMD Ryzen 7 5825U with Radeon Graphics 2.00 GHz
Installed RAM 16.0 GB
System type 64-bit operating system, x64-based processor



Enabled Core Isolation
enabled Force randomization for images mandatory (ASLR)
Firefox latest
windows 11

Enabled these optional features:
Microsoft defender application guard
Windows sandbox
Notable changes

sophos intercept x​

cyberlock pro lifetime
What I'm looking for?

Looking for maximum feedback.

Notes by Staff Team
  1. This setup may cause performance issues, system instability or conflicts between programs, and can hinder the effectiveness of the installed antivirus products.

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,045
Are you talking about Trellix endpoint?

Any reason to choose it over other endpoints? Does your risk factors justify the use of an endpoint for home use vs say a top-notch AV/AM?

Thanks
 
Last edited:
  • Like
Reactions: Nevi and Trident

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,324
It's because he is allowing beta updates
Probably, beta updates and same for Windows Insider builds... also on "risk" config is usually information like that:
Notes by Staff Team:
This setup may cause performance issues, system instability or conflicts between programs, and can hinder the effectiveness of the installed antivirus products.
 

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,045
We’re updating the criteria, but as pointed out by @Kongo and @silversurfer these are correct as of now.

On a side note: OP is changing their primary security solution more often than Microsoft updates Windows. Something isn’t right.

He is bettering himself.........from AV/AM to endpoint

Me too, looking for better AV/AM and endpoint..........within my means
 
Last edited:

Trident

Level 28
Verified
Top Poster
Well-known
Feb 7, 2023
1,758
is check point harmony better than McAfee endpoint?
Definitely. Regardless whether you will deploy it with Sophos or Kaspersky, both engines are a lot more capable than McAfee's engine.
McAfee also highly relies on runtime detection which is not great. There is a limitation how much of the behavior you can monitor before your antivirus becomes too heavy and in some cases, by the time it's classified, damage may already have been done. McAfee also contains Dynamic Application Containment which acts similarly to Kaspersky Application Control/IDS but it is subpar compared to Kaspersky, complicated to setup and apps don't work at all contained.
McAfee still has no NGAV offering and until recently (now it may have changed) had no anti-bot component, it could only provide web-filtering in browser.

Check Point layers third-party engine with threat emulation, ngav and all runtime detection components you've come to expect, including anti-bot. Check Point and McAfee are not even to be compared.
 
  • Like
Reactions: Nevi and carl fish

Ink

Administrator
Verified
Staff Member
Well-known
Jan 8, 2011
22,396
He is bettering himself.........from AV/AM to endpoint

Me too, looking for better AV/AM and endpoint..........within my means
It’s counterintuitive. Look at OPs history of changes, absolutely zero reasons to go back and forth to Kaspersky, ESET and the 12 other products…. multiple times a month.

If it’s a Test PC, then it’s understandable but it’s not for a primary device.
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top