Advanced Plus Security Wraith's Gaming PC Config for 2019

Last updated
Sep 2, 2019
Windows Edition
Home
Log-in security
Security updates
Allow security updates and latest features
User Access Control
Always notify
Real-time security
ESET Internet Security + Simple Software Restriction Policy (SRP)
Firewall security
About custom security
Custom HIPS & Firewall Rules
Periodic malware scanners
Malwarebytes
Malware sample testing
Browser(s) and extensions
Brave with all the shields
Maintenance tools
CCleaner Portable
File and Photo backup
External HDD
System recovery
Windows Backup & Restore
Risk factors
    • Gaming
    • Browsing to popular websites
    • Streaming audio/video content from shady sites
Computer specs
i5 7600K
ASRock Z270 Taichi
16GB Ram
Galax GTX 1070 Ti
1TB SSD
plat1098 said:
Have you considered an anti-executable?
Click to expand...
The only anti-executable I may give a try is NVT ERP. It allows you to monitor the Program Files and the Windows Folder. I'll install ERP on the other PC I have where ESET IS is installed.
 
Last edited:
  • Like
Reactions: oldschool and harlan4096
ADDED:
Sandboxie
Does anyone know what's wrong with the sandboxie website? I an unable to purchase a license.
 

Attachments

  • Sandboxie.JPG
    Sandboxie.JPG
    79.1 KB · Views: 361
  • Like
Reactions: oldschool and harlan4096
People who use AppGuard and SSRP usually have unprotected shortcuts and Windows writable subfolders. It is not easy to protect shortcuts properly in SRP, but it is possible. On Windows 7, PowerShell and some LOLBins should be also blocked. Some hardening is also advisable like blocking remote features (RDP, Remote Registry, Remote Shell) and SMB protocols.(y)
 
  • Like
Reactions: oldschool, Venustus, silversurfer and 3 others
Andy Ful said:
People who use AppGuard and SSRP usually have unprotected shortcuts and Windows writable subfolders. It is not easy to protect shortcuts properly in SRP, but it is possible. On Windows 7, PowerShell and some LOLBins should be also blocked. Some hardening is also advisable like blocking remote features (RDP, Remote Registry, Remote Shell) and SMB protocols.(y)
Click to expand...
An excellent point about the unprotected shortcuts. Currently I don't have that covered. For the blocking of remote features, I use SH and I have ESET HIPS and firewall rules set up to block execution of powershell & wscript. On my windows 10 pc, I use VS alongwith the tried and tested H_C designed by you my friend. Light, simple and effective. :emoji_beer::cool:
 
  • Like
Reactions: oldschool, Andy Ful, harlan4096 and 1 other person
You must log in or register to reply here.

You may also like...