Enterprise only for me. Thanks for the insight Boss Man
Thanks for your free tools also I use them all the timeCan Comodo Virtual Desktop contain the DLL hijacking PoC?
But the UAC incompatibility affects the (optional) "Restriction Level" setting and not the (primary) "Run Virtually" setting.
I'd be interested in learning about best alternatives, or companions that can fill the gaps to get closer to a zero-sum security configuration. I use a standard account with DEP enforced for all processes, and AppCheck Anti-Ransomware Free for its vault feature, in case something gets infected before I have an up-to-the-minute backup. I am of the understanding that Cruel CF can supposedly block unknown processes from phoning home, and that it errs on the side of caution if you use silent mode. But I'm not a tester, and can't vouch for mileage. In the case of an LOLBIN exploit, I wonder if Comodo would even bat an eye.
I remember VS. I got rid of it because it stopped working every time an update was available, and the only way to "update" was to uninstall and replace it with the latest version. Has this been corrected?
Not I. That's why I don't use HIPS. Not saying H_C is noisy, btw.That is normal. Most people cannot live with security based on allowlisting + file reputation. Anyway, the fewer people use it, the more effective it is.
More people could use it with the help of a "Family administrator". But who would like to be a "Family administrator"?
Not had any issues with updates at all. Still runs smoothly. Website mentions Fileless capabilities though I've not tested it myself but @danb can clarify.
That's awesome. I might have to give it another try. Thank you!Not had any issues with updates at all. Still runs smoothly. Website mentions Fileless capabilities though I've not tested it myself but @danb can clarify.
"CyberLock includes extremely robust ransomware, script, LOLBins and fileless malware protection capabilities, and is capable of blocking 139 potentially malicious file types."
Indeed. I bought two years at the start of this year and definitely thinking about lifetime if it continues to work well with my setups
But who would like to be a "Family administrator"?
I agree with @ErzCrz. I am a 10 yr+ user of Cyberlock, and it has always worked well for me, and @danb is improving it all the time and easily available. I've also installed AppGuard Solo on 2 vm, (not obvious but its license is good for 3 computers iirc) and after AG's learning curve, it also works well for me. I do not run them both on the same computer although I think I've heard it's possible but perhaps not practical. It will be interesting to see @Shadowra's test. This could be a test where the methodology is critical to understanding if one is better, or their strengths and if they have any weaknesses.
Did cyberlock pass these tests ?That is normal. Most people cannot live with security based on allowlisting + file reputation. Anyway, the fewer people use it, the more effective it is.
More people could use it with the help of a "Family administrator". But who would like to be a "Family administrator"?
I did not test it and there is no need to do it. People who use CyberLock can hardly be targets of such attacks.
Cybercriminals are people. But yes, users do put themselves at risk, be it with warez, or by neglecting their security.
