Advanced Plus Security ErzCrz Security Config 2024

Last updated
May 19, 2023
How it's used?
For home and private use
Operating system
Windows 11
On-device encryption
BitLocker Device Encryption for Windows
Log-in security
    • Biometrics (Windows Hello PIN, TouchID, Face, Iris, Fingerprint)
Security updates
Allow security updates and latest features
Update channels
Allow stable updates only
User Access Control
Always notify
Smart App Control
Off
Network firewall
Enabled
About WiFi router
Sky Router with built-in IPV4/IPv6 Firewall
Real-time security
Comodo Firewall 2025
DefenderUI
CyberLock
Firewall security
Other - Internet Security (3rd-party)
About custom security
CF - CruelSister configuration
DefenderUI - Recommended Config
Cyberlock - ON - Create In/Out Firewall Rules for Unsafe Items. Require Captcha to exit.
Periodic malware scanners
Norton Power Eraser
Malware sample testing
I do not participate in malware testing
Environment for malware testing
N/A
Browser(s) and extensions
Primary: Edge with uBO in Medium Mode
Secondary - Firefox with uBO in Medium Mode
Secure DNS
Provided by ISP Sky Shield though occasionally Cloudflare DNS over HTTP.
Desktop VPN
None. Browsing primarily on home private network.
Password manager
Keepass 2.x
Maintenance tools
Windows built-in Disk Clean-up and Storage Sense.
File and Photo backup
Seagate - Toolkit - Weekly Backup
Subscriptions
    • None
System recovery
AOMEI System Backup Monthly to external drive.
Risk factors
    • Browsing to popular websites
    • Working from home
    • Making audio/video calls
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Downloading software and files from reputable sites
    • Gaming
    • Streaming audio/video content from trusted sites or paid subscriptions
Computer specs
Notable changes
22.01.2022 - Reverted to Comodo Internet Security setup with Firefox as default browser and Thunberbird email client.
15.05.2022 - Reverted to Hard_Configurator setup following errors after uninstall and PC reset with Edge as default browser for MD integration while also sticking to Thunderbird for email & Updated backup routine.
13.08.2022 - Swapped to built-in backup solution.
12.09.2022 - General update in line with new guidelines.
29.10.2022 - Edge Exploit Tweaks re-implimented
15.11.2022 - Edge Exploit Tweaks removed. Removed OneDrive backups.
18.11.2022 - Firefox now my primary browser & Thunderbird primary email client.
12.12.2022 - updated Dec 2022 changes, backup now manual and onedrive. Experimenting with Comodo Internet Security but not fully committed to it yet.
11.01.2023 - Updated Security Configuration for new laptop and having won Emisoft giveaway.
22.01.2023 - Reverted to MD, ConfigureDefender - High & Enabled CFA, FWHardener, Added NPE to scanner, Edge exploit tweaks.
01.02.2023 - Now using Seagate Toolkit for Backup of Documents and Folders
18.05.2023 - Using H_C Beta and few unticks/ticks of PC use.
24.06.2023 - Back to Emsisoft Anti-Malware Home, Changed Password Manager to KeepassXC
02.09.2023 - Switched from Emsisoft Setup to CF/MD Configuration
20.10.2023 - Switched to Firefox, no longer using VPN for as work now has Azure cloud servers. Temporarily removed custom exploit settings.
01.11.2023 - Back to MD H_C setup
12.12.2023 - Added Anti-Exploit Tweaks and uBO in Hard Mode with noop rules.
20.12.2023 - Removed custom exploit rules as having some Edge freezes. Moved back to Comodo Firewall with Cruelsister Configuration.
21.12.2023 - Firefox now primary browser.
27.12.2023 - Edge changed to Primary Browser
06.01.2024 - Removed WFC, Implemented WFH & CL create firewall rules for not safe items.
08.01.2024 - Re-Added WFC
03.01.2024 - Firefox now primary browser.
21.01.2024 - Changed Primary Browser to Edge
28.01.2024 - Removed WFC and replaced with CF
05.02.2024 - Returned to WFC
28.02.2024 - Adjusted uBO Rules & Added Netcraft & BD:TL extensions
25.03.2024 - Changed to CIS .8012
10.04.2024 - Reverted to MD/DefenderUI/Cyberlock/WFC Config
11.04.2024 - Reverted to MD/DefenderUI/Cyberlock/CF
21.05.2024 - CIS Final Beta, AOMEI System Backup Monthly - Scheduled, Firefox Primary Browser and uBO only for browser extensions.
31.05.2024 - CIS Premium 2025 Released
31.12.2023 - New config for 2024 - MD (DefenderUI), CyberLock,WFC
----------------------------------------
18.06.2024 - CF 2025, DefenderUI, CyberLock
27.06.2024 - Swapped KeepassXC to Keepass
Disclaimer we use date format DD/MM/YYYY here in the UK
What I'm looking for?

Looking for minimum feedback.

rashmi

Level 8
Jan 15, 2024
363
Just experimenting with just blocking rather than virtualization
For auto-containment, I've set the "run virtually" rule to "block" in the "action" setting. This blocks unrecognized files and programs with elevated rights. Additionally, I've changed the firewall setting to "allow" connections and enabled stealth mode. I have also suspended the alerts and password-protected CF. I apply this setup to both the kids' systems and mine, but I specifically keep alerts enabled on mine.
 
  • Thanks
Reactions: ErzCrz

ErzCrz

Level 21
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,086
Just a tweak to setup. Now CF 2025 with CruelSister Config, DefenderuI Recommended & CyberLock.

I'm using FF primarily but should be using Edge since I'm using MD and some things work better on it so undecided about what for primary though CF and CL and MD will catch it no matter where it comes from ;)
 

ErzCrz

Level 21
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,086
CruelSister Config, DefenderuI Recommended & CyberLock... overkill? 🤔
Technically, yes and chances are CL will block the virtualization like below when trying to run FF in Containment and I may just end up with WFC at some stage.

1718741822186.png


1718741466723.png

@oldschool is right that I do like the setup and primarily having CF available to assist CF users. Maybe I need a VM for that and just use WFC hmm.
 

ErzCrz

Level 21
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,086
Gone down the WFC, DefenderUI, CyberLock, MD route for now and swapped back over to Edge. Holding off on amending config for the moment in this topic but will do if I stick with it for a bit.
 

rashmi

Level 8
Jan 15, 2024
363
Your return to Comodo is imminent. For those who understand how to use it effectively, Comodo is unmatched in simplicity and efficiency. Besides whitelisting and containment, you can also use HIPS and other advanced tweaks. You can open a virtual desktop for secure banking or online shopping. The contextual option allows you to run browsers or check programs virtually. Tools like KillSwitch, AutoRun Analyzer, and others quickly detect any malicious or unknown behavior on your system. No setup, whether layered or standalone, can guarantee 100% protection. I suggest using Comodo as a standalone solution for an effective and seamless experience.
 

ErzCrz

Level 21
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,086
Very minimal change. Swapped from KeepassXC to Keepass 2.x as KPXC update was silently crashing and I had to re-install MSVC Redistributable which is the second tim I've had an issue with a KeepassXC update. Normal Keepass 2.x just works well and I waa able to open the KPXC database including TOTP with Keepass ;)
 

ErzCrz

Level 21
Thread author
Verified
Top Poster
Well-known
Aug 19, 2019
1,086
Technically, yes and chances are CL will block the virtualization like below when trying to run FF in Containment and I may just end up with WFC at some stage.

View attachment 283877

Did a test a unknown file with CIS installed as MD blocked the file and there wasn't any conflict when running unknown in containment manually though containment and CL alert when just running the unknown after bypassing Windows File block. Allowing in CL allowed CIS to put file in containment, block, blocked it from going to containment. File undetected in VT VirusTotal and Unknown in Valkyrie Verdict.

MD did well to block the download when I ran CF along side it:
1719769433379.png

Anyway, CF with MD/DefenderUI and CyberLock my current favourite combination at the moment as file allowed to be downloaded with CIS installed though contained when run. I don't have access to the file anymore but it was a useful test to see I'm protected from all sides :)

EDIT: it is overkill having CF which I'm aware of, WFC also a solution I've used but I guess it depends on my level of paranoia ;)
 
Last edited:

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top