Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Entreprise Version Comparative - Sophos vs Checkpoint vs Eset vs Bitdefender (Hard Settings + EDR)
Message
<blockquote data-quote="Shadowra" data-source="post: 1124434" data-attributes="member: 92939"><p>Welcome to this comparison!</p><p>Today we're going to compare 4 enterprise versions of antivirus software: Sophos InterceptX, Checkpoint Harmony, ESET Protect + EDR and Bitdefender GravityZone with HyperDetect.</p><p></p><p>A few details:</p><p>- All the antivirus products have been configured to the maximum for this test, and the default test was carried out 1 month ago.</p><p>- I add the EDRs offered by the suppliers if they offer them (this is the case with Sophos, ESET and Bitdefender).</p><p>- I don't own the licences, I don't show the whole panel and I hide the owner.</p><p>- Many thanks to [USER=51448]@kamiloxf[/USER] for the licences <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite110" alt=";)" title="Wink ;)" loading="lazy" data-shortname=";)" /></p><p></p><p>[MEDIA=odysee]id=ecb9b09e4278f447889003793e91a96c6b4d42c9;name=Entreprise-Version---Sophos-vs-Checkpoint-vs-Eset-vs-Bitdefender-%2528Hard-Settings-%2B-EDR%2529;path=%40Shadowra%3Af%2FEntreprise-Version---Sophos-vs-Checkpoint-vs-Eset-vs-Bitdefender-%2528Hard-Settings-%2B-EDR%2529%3Ae[/MEDIA]</p><p></p><p>[SPOILER="Sophos Intercept X"] </p><p>Sophos offers a very simple agent and a fairly simple yet comprehensive panel.</p><p>The software is easy to set up, so I set it to maximum.</p><p></p><p>On the Web, Sophos leaves 1 malware which is ConnectWise.</p><p>Nothing to say about the fake crack.</p><p></p><p>Malware Pack: remains 58 out of 122.</p><p>Sophos's behavioural protection is very average...</p><p>It will try to defend itself as best it can (it managed to block a few attacks) but during the test, not everything went as I expected.</p><p>During execution, ConnectWise activated and gave me a magnificent block (often used by "Microsoft Tech Support" crooks) and I had to restart the machine by force.</p><p>When I continued, the situation got worse... Sophos left a BATCH script that installed a Ransomware without reacting.</p><p>I have to stop the test.</p><p> [/SPOILER]</p><p></p><p>[SPOILER="Checkpoint Harmony"] </p><p>CheckPoint is evolving and offering a new interface that's more polished and elegant for my taste! It's still in BETA, but I'm activating it to check it out.</p><p>On the Web, CheckPoint lets through a malicious Google Chrome download, although the dropper is detected afterwards.</p><p>There's nothing to say about the fake crack detected either.</p><p></p><p>Malware Pack: Remains 26 out of 122</p><p></p><p>CheckPoint proves its performance by blocking all the traps I set for it.</p><p>The HTA file is blocked, so it cannot connect.</p><p>1 file remains in memory, detected by no antivirus.</p><p>Just 1 trace of infection is present at the end of the test.</p><p> [/SPOILER]</p><p></p><p>[SPOILER="ESET Protect"] </p><p>ESET offers an enterprise version based on Smart Security Premium. I'm integrating its EDR for the test.</p><p>Surprisingly for ESET, everything is configured on the agent! Few settings are available on the panel... It's a debatable choice, but let's move on.</p><p></p><p>On the Web, ESET blocks all links by blocking them at source.</p><p>On the fake crack, nothing to say, ESET blocks executions.</p><p></p><p>Malware Pack: remains 34 out of 122.</p><p></p><p>ESET has held on to executions, and is starting to react well to scripts. </p><p>When GuLoader tries to install itself, ESET prevents it from connecting, a good point!</p><p>On the other hand, the same script that killed Sophos passes through without reacting and installs the Ransomware... ESET is unable to stop it, nor to remedy this with its EDR.</p><p>Quite disappointing. <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite111" alt=":(" title="Frown :(" loading="lazy" data-shortname=":(" /></p><p> [/SPOILER]</p><p></p><p>[SPOILER="Bitdefender GravityZone with HyperDetect"] </p><p>Bitdefender has updated its GravityZone version and FINALLY has an excellent panel, which is very comprehensive, if not too comprehensive!</p><p>You can now configure everything: Engine aggressiveness, IDS aggressiveness, HyperDetect aggressiveness etc.</p><p>I also activated the Bitdefender Sandbox for the test.</p><p></p><p>On the Web, everything is blocked except Google Chrome, which installs itself.</p><p>On the fake crack: Bitdefender blocks all launches.</p><p></p><p>Malware Pack: remains 36 out of 122.</p><p></p><p>After an analysis that lasted over 1 hour, I can finally run the threats.</p><p>And I have to say I'm very surprised: Bitdefender makes a totally clean machine! No malware got through!</p><p>This is down to its proactive protection and HyperDetect, which correctly blocked the threats.</p><p>The detection of NPE is a false positive, it's the blocking of Microsoft telemetry.</p><p>I was very surprised!</p><p> [/SPOILER]</p></blockquote><p></p>
[QUOTE="Shadowra, post: 1124434, member: 92939"] Welcome to this comparison! Today we're going to compare 4 enterprise versions of antivirus software: Sophos InterceptX, Checkpoint Harmony, ESET Protect + EDR and Bitdefender GravityZone with HyperDetect. A few details: - All the antivirus products have been configured to the maximum for this test, and the default test was carried out 1 month ago. - I add the EDRs offered by the suppliers if they offer them (this is the case with Sophos, ESET and Bitdefender). - I don't own the licences, I don't show the whole panel and I hide the owner. - Many thanks to [USER=51448]@kamiloxf[/USER] for the licences ;) [MEDIA=odysee]id=ecb9b09e4278f447889003793e91a96c6b4d42c9;name=Entreprise-Version---Sophos-vs-Checkpoint-vs-Eset-vs-Bitdefender-%2528Hard-Settings-%2B-EDR%2529;path=%40Shadowra%3Af%2FEntreprise-Version---Sophos-vs-Checkpoint-vs-Eset-vs-Bitdefender-%2528Hard-Settings-%2B-EDR%2529%3Ae[/MEDIA] [SPOILER="Sophos Intercept X"] Sophos offers a very simple agent and a fairly simple yet comprehensive panel. The software is easy to set up, so I set it to maximum. On the Web, Sophos leaves 1 malware which is ConnectWise. Nothing to say about the fake crack. Malware Pack: remains 58 out of 122. Sophos's behavioural protection is very average... It will try to defend itself as best it can (it managed to block a few attacks) but during the test, not everything went as I expected. During execution, ConnectWise activated and gave me a magnificent block (often used by "Microsoft Tech Support" crooks) and I had to restart the machine by force. When I continued, the situation got worse... Sophos left a BATCH script that installed a Ransomware without reacting. I have to stop the test. [/SPOILER] [SPOILER="Checkpoint Harmony"] CheckPoint is evolving and offering a new interface that's more polished and elegant for my taste! It's still in BETA, but I'm activating it to check it out. On the Web, CheckPoint lets through a malicious Google Chrome download, although the dropper is detected afterwards. There's nothing to say about the fake crack detected either. Malware Pack: Remains 26 out of 122 CheckPoint proves its performance by blocking all the traps I set for it. The HTA file is blocked, so it cannot connect. 1 file remains in memory, detected by no antivirus. Just 1 trace of infection is present at the end of the test. [/SPOILER] [SPOILER="ESET Protect"] ESET offers an enterprise version based on Smart Security Premium. I'm integrating its EDR for the test. Surprisingly for ESET, everything is configured on the agent! Few settings are available on the panel... It's a debatable choice, but let's move on. On the Web, ESET blocks all links by blocking them at source. On the fake crack, nothing to say, ESET blocks executions. Malware Pack: remains 34 out of 122. ESET has held on to executions, and is starting to react well to scripts. When GuLoader tries to install itself, ESET prevents it from connecting, a good point! On the other hand, the same script that killed Sophos passes through without reacting and installs the Ransomware... ESET is unable to stop it, nor to remedy this with its EDR. Quite disappointing. :( [/SPOILER] [SPOILER="Bitdefender GravityZone with HyperDetect"] Bitdefender has updated its GravityZone version and FINALLY has an excellent panel, which is very comprehensive, if not too comprehensive! You can now configure everything: Engine aggressiveness, IDS aggressiveness, HyperDetect aggressiveness etc. I also activated the Bitdefender Sandbox for the test. On the Web, everything is blocked except Google Chrome, which installs itself. On the fake crack: Bitdefender blocks all launches. Malware Pack: remains 36 out of 122. After an analysis that lasted over 1 hour, I can finally run the threats. And I have to say I'm very surprised: Bitdefender makes a totally clean machine! No malware got through! This is down to its proactive protection and HyperDetect, which correctly blocked the threats. The detection of NPE is a false positive, it's the blocking of Microsoft telemetry. I was very surprised! [/SPOILER] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
