Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Written Reviews - Security and Privacy
G DATA Total Security 2022
Message
<blockquote data-quote="Mahesh Sudula" data-source="post: 981216" data-attributes="member: 65679"><p>The problem with these institutes is they don't run a malicious sample or code in real time to generate similar malicious scenarios then check how in real time the AV's react ?</p><p>Reasons were obvious : Either they can't code such malicious code, secondly in wild samples might have been blocked by Web shield / Static signatures. Disabling these and testing only Proactive shields is another matter.</p><p></p><p>Second catch is now a days most AV vendors made sure their proactive modules are tied to reactive modules (likely) to cover up their weak points when only Proactive shields are enabled to defend such real time hard blooded malicious behaviors (fair enough) ex: Norton -SONAR</p><p></p><p>So in case if u want a ready made hand coded samples to trigger similar behaviors obviously many Av's wont react since they can't perform all the triggers what an actual malware does real time . For ex: All the above scenario's are purely hips based..so Spy shelter / Comodo (expected) rocked the test, then Dr WEB. Majority of well knwn vendors like BD, G data tanked the test. SIMPLE. they just won' t react.</p><p></p><p>Ex: It is easy to just code a ransomware to simply encrypt files by any simple form, or make a suspicious sample by yourself (by simple code so simple) that deletes all your files , majority of AV don't react to such simple hand coded scenarios.</p><p></p><p>It is just my opinion, on these tests overall not just Avlab.pl there are 4/5 other institutes. DENNIS LAB a German based AV testing used to be somewhat ok but it was closed*</p><p></p><p>Our HUB is where we execute real world sample scenarios (to certain extent) where Av's face real time challenge, just purely based on the samples we get that day. Standard AV's might not win every time, but they definetly give a STRONG fight back . To my knowledge these are the AV's that does exactly that - TOP-> K, BD, G data, Norton</p><p>middle rank are Avg/Avast, F secure , Emsisoft.</p><p></p><p>*Take above opinion with a grain of salt *</p></blockquote><p></p>
[QUOTE="Mahesh Sudula, post: 981216, member: 65679"] The problem with these institutes is they don't run a malicious sample or code in real time to generate similar malicious scenarios then check how in real time the AV's react ? Reasons were obvious : Either they can't code such malicious code, secondly in wild samples might have been blocked by Web shield / Static signatures. Disabling these and testing only Proactive shields is another matter. Second catch is now a days most AV vendors made sure their proactive modules are tied to reactive modules (likely) to cover up their weak points when only Proactive shields are enabled to defend such real time hard blooded malicious behaviors (fair enough) ex: Norton -SONAR So in case if u want a ready made hand coded samples to trigger similar behaviors obviously many Av's wont react since they can't perform all the triggers what an actual malware does real time . For ex: All the above scenario's are purely hips based..so Spy shelter / Comodo (expected) rocked the test, then Dr WEB. Majority of well knwn vendors like BD, G data tanked the test. SIMPLE. they just won' t react. Ex: It is easy to just code a ransomware to simply encrypt files by any simple form, or make a suspicious sample by yourself (by simple code so simple) that deletes all your files , majority of AV don't react to such simple hand coded scenarios. It is just my opinion, on these tests overall not just Avlab.pl there are 4/5 other institutes. DENNIS LAB a German based AV testing used to be somewhat ok but it was closed* Our HUB is where we execute real world sample scenarios (to certain extent) where Av's face real time challenge, just purely based on the samples we get that day. Standard AV's might not win every time, but they definetly give a STRONG fight back . To my knowledge these are the AV's that does exactly that - TOP-> K, BD, G data, Norton middle rank are Avg/Avast, F secure , Emsisoft. *Take above opinion with a grain of salt * [/QUOTE]
Insert quotes…
Verification
Post reply
Top
