EMET

[Overkill]

I was wondering how do you guys configure this? what are the pros and cons to using it?

 

[pcjunklist]

I set mine to paranoid, I have never tested it out. In theory it's supposed to help but I just add it into the many layers of security I use just in case. It doesn't replace any security tools just helps block some 0-day attacks on common vectors like flash, java, or office (or other programs you add into it).
http://rationallyparanoid.com/articles/microsoft-emet-2.html

 

[Ink]

Some topics around the forum about EMET.

http://malwaretips.com/Thread-split-EMET-question?pid=39030#pid39030

http://malwaretips.com/Thread-Security-software-can-reduce-effectiveness-of-DEP-ASLR?pid=22412#pid22412

http://malwaretips.com/Thread-Heap-Spray-Protections?pid=45882#pid45882

But take a look at the link pcjunklist provided.

 

[jamescv7]

Well for Vista and 7 can be fully activated like SEHOP, DEP and ASLR while Windows XP have DEP only on works. So I recommended that everything must be enable.

When you open like Processor Explorer once the process is under of EMET it injects like dll as its a sign that works to prevent any mitigate attacks.

It will not bother any CPU/RAM Consumption.

 

[malbky]

I will try EMET. IT is safe right? I mean does it ause any BSOD's or anything?

 

[jamescv7]

Nope it will not cause any BSOD or crashes.

 

[Overkill]

Thanks all for the replies, I will read up on emet