User Feedback ESET Internet Security 13 - a technology revisit to the Nod legacy
- Thread starter Parsh
- Start date
Didn't test the newest version of eset but it slowed down my very low end laptop ,
only comodo fw seems to be light.
only comodo fw seems to be light.
I think Bitdefender too, since the ATP approach is similar to Kaspersky proactive defense.The test uses Powershell attacks for most of the part, C# (high level programming language) malware and office macros - all of these using different techniques and known exploit frameworks including pen-testing tools. What good would pen-test tools be if AVs could easily defeat them?
ESET and Kaspersky have a strong monitoring against powershell attacks as evident from their own analysis blogs and these tests. They also arguably have among the best "in-memory" scanners (among the AVs), that they have documented in their whitepapers. So it wouldn't be so surprising.
I think Avast/AVG are also not behind, especially since cruelsister suggested.
Detection of malware written in high-level programming language is an ESET DNA strong-point. I do not remember the attack exactly, but Kaspersky's memory protection along with its FW was among the first to detect and block a new state-sponsored malware (no, I am not talking about Duqu 2.0).
I do not think this test is very much advanced either. Just good enough to filter which products can still not handle such known types of targeted attacks, now that one would expect them to :
Many others not participating just indicate they're either not prepared or are not confident about their efficacy.
I believe @Andy Ful has a good grasp of some of these tools like Metasploit
In another famous test, ESET, Kaspersky and AVG/Avast were among the few to block in-memory powershell attack using Mimikatz, though ESET did not succeed in the final test.
One could expect from Bitdefender's ATP. It has done very good in some tests including MRG Effitas 360 test, but not so impressive in some special tests like the AV Comparatives Advanced test or MRG Effitas PS test (links from review^). Not to judge it based on a couple of tests though. Time and test-cases vary, results vary.
Another thing is they do not have their home product defenses well documented like the others. While they have a number of endpoint whitepapers (1)(2) they relate to their product features.
BD does have some impressive business solutions GravityZone Endpoint Platform and HyperVisor Introspection.
Again, relevant documented resources for home product lineup aren't available.
The 2nd link is too old (before the BD logo change) and the 1st one is a Business whitepaper from 2015
Yet the business document seems to explain the basics of ATP
Tell us more about that exception, pleaseA thorough and an excellent review for ESET. I have been using ESET for the last 5 years and it has never let me down except once. You nailed all the pros and cons. For someone who's using ESET IS in a laptop, the Anti-Theft feature is a great addition. You pointed out about the VPN. Personally I think that the Internet Security version is fine without a VPN. ESET is not bloated like some other suites which requires extensions for the web protection to function properly. The web protection and the signatures/heuristic are one of the best, if not the best. The Parental Control feature is also one of the best in the market categorising every page precisely. The minor complains I have with are the HIPS and the Firewall. HIPS in automatic mode is rubbish and in Interactive Mode will drive you crazy. The best way is to set it to SMART MODE and create your own rules. The Firewall is one of the best with Botnet Protection but I would be happy if ESET implements SMART RULES for the Firewall like Norton. In automatic mode it allows all outbound connections but it should have been this way- allow for known good applications, block for known malicious applications and ask for unknown applications. Needless to say about system impact and lightness as you said in your review- the lightest suite out there. Last but not the least I can sleep peacefully knowing that the great robot is protecting my PC.
