- Sep 17, 2016
- 113
ExoGen CyberSecurity - Security Configuration
- Thread starter ExoGen CyberSecurity
- Start date
Why do you test real malware on your PC and not inside a virtual box ?
- Sep 17, 2016
- 113
Because I work in computer security and when people tell me how amazing "x" product or products I tell them that we should test on our real PCs, I get 5 random samples from my honeypot and add 5 more safe files and we execute them to see how amazing the security product is.
Like you notice when you sent me a message or how I told you here
Someone from work told me how amazing his setup is and he got infected by JigSaw Ransomware so ... Personally I think that most security products are useless and it's all marketing. If you notice I don't even use HIPS, I think it's enough to use some type of sandbox and WD/MSE + Windows Firewall (if you use Windows 10 smartscreen enabled) + UAC set on max.
There is an amazing trick (it's use by some hackers with njRat), you add a digital signature to the malware and you insert inside a portable app or the most common apps that are flagged as malware (7Zip,7Zip ThemeManager and many more).
Like you notice when you sent me a message or how I told you here
Someone from work told me how amazing his setup is and he got infected by JigSaw Ransomware so ... Personally I think that most security products are useless and it's all marketing. If you notice I don't even use HIPS, I think it's enough to use some type of sandbox and WD/MSE + Windows Firewall (if you use Windows 10 smartscreen enabled) + UAC set on max.
There is an amazing trick (it's use by some hackers with njRat), you add a digital signature to the malware and you insert inside a portable app or the most common apps that are flagged as malware (7Zip,7Zip ThemeManager and many more).
Similar threads
