Im an teenager im 17 years old and i know about cybersecurity
Comodo's killer.
- Thread starter Andy Ful
- Start date
It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Try with tdss killer to launch a dll file that's unknown and you will see it's possible to bypass containment
We talk about the opposite. Trusted executables can use something unknown to destroy the system and avoid containment.
Well every AV is bypassable just so you know
No AV is perfect and it will never be but AVs are Good and i choosed Xcitium to protect my pc from zero-day malware i also know sources of where to get samples from
I Submit samples on a daily basis to Xcitium
I Submit samples on a daily basis to Xcitium
Yes, that is true. However, in this thread, we would like to present the setup which is significantly better than most AVs and better than standard CIS/Xcitium settings.
100% but we are trying to figure out all kinds of different setups , solutions to get that so hard that it will take more then a skid and a malicious dll mod to infect a system yet be enough user friendly (low false positives) for users to use
I think cruel sister settings are not too bad on usability as you can install a fair amount of popular games , popular piracy with not too many false positives although some here and there
Andy solution will be too aggressive and even an admin of the PC might look for a more convenient method to secure his kids PC
The Comodo team was unable to fix the sandbox, the POC was able to bypass the CIS.
What they did was a workaround.
Even sandbox is bypassable yes but still Xcitium does a pretty good job against unknown zero day malware
Which POC was able to bypass the newest version of CIS due to the sandbox bypass?
Last edited:
It doesn't block it, there are several malwares that pass, according to the tests I do here.
Also you have to have a really good internet connection for fast verdicts for Xcitium
The method used to bypass comodo is used by skids to put malware in mods .dll (game exe is trusted)
not even talking about how big of an issue that flaw is to enterprises but even to home users it's awful as it's definitely in the wild and not rare
I tried again, and yes, Comodo blocked the unknown files from Program Files.
Yes, one should use the "ignore" option for troublesome software or issues.
On our kids' system, I simply use Comodo Firewall proactive security with the containment/firewall set to block unknown programs.
Have you looked into data protection from ransomware with Comodo?
@cruelsister has often recommended this combo in the past.
Hello everyone! I would like someone who is more expert than me on the subject, to test Comodo firewall by activating “hips” and selecting the option “Do not show popup alerts / Block requests” and in the Sandbox module “Do NOT show privilege escalation alerts / Block” to know if this would increase protection against unknown malware, POC, etc. Thanks and best regards
Pretty sure she has defender enabled on her system
Another av she recommended to those looking for an av to combine (those that asked )
Was Kaspersky but anyway she trusts comodo alone and unfortunately looking how easy a dll hijack I personally don't trust it as much
But she's an actual security expert at least judging by her knowledge so I'm not saying she's wrong but really hope she will come back and share some more of her knowledge
You may also like...
-
-
Huorong Internet Security v6.0.7.12 (Modified Setting)- Started by janx
- Replies: 22
-
-
-
COMODO Internet Security 2025 Premium- Started by Shadowra
- Replies: 106