Question Good Free Firewall with Malicious Outbound Blocking?

Please provide comments and solutions that are helpful to the author of this topic.

Bot

Bot

AI-powered Bot
Verified
Apr 21, 2016
3,491
No, not only .exe files can connect to the internet. Other file types, such as .dll and .sys, can also establish internet connections. Additionally, scripts can connect to the internet without the need for an .exe file, as they can use interpreters or scripting engines to execute their code and establish connections.
 
  • Like
Reactions: cryogent, Shadowra and brambedkar59
silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,200
Azazel said:
Also, Do only .exe files can connect to the Internet and scripts must use .exe to be able to connect?
Click to expand...
For scripts, this malware variants usually does abuse "LOLbins" for outbound connections, here this link to check for related files: LOLBAS

I can recommend this tool "FirewallHardening" by @Andy Ful he does still kindly add new LOLbins reported from known malware attack vectors...
malwaretips.com

FirewallHardening tool

FIREWALLHARDENING (new ver. 3.0.0.1, January 2024) FirewallHardening is a part of the Hard_Configurator project and can be used also as a standalone application among a few others included in the H_C_HardeningTools repository...
malwaretips.com malwaretips.com
 
  • +Reputation
  • Like
  • Applause
Reactions: simmerskool, piquiteco, Kongo and 5 others
Azazel

Azazel

Level 5
Thread author
Jun 15, 2023
239
Supposed I am using Default Deny Security Such as Smart App Control.
I will be covered from Executables vector (exe, dll, sys) by having an Outgoing connection because they will be blocked all together.
So I will just need Firewall Hardening Tool to block LOLBins and Scripts.
Am I Cover with this Setup, or Do I need an additional layer to block legitimate executables from connecting to Malicious urls and IPs.
Do antivirus 's web protection cover such threats?
 
  • Like
Reactions: piquiteco and Kongo
piquiteco

piquiteco

Level 14
Oct 16, 2022
626
brambedkar59 said:
I like this one: Windows Firewall Control by Malwarebytes.

Windows Firewall Control

Windows Firewall Control is a powerful tool which extends the functionality of Windows Firewall by adding outbound notifications and many other features.
www.binisoft.org www.binisoft.org
Click to expand...
I am running Windows Firewall Control + H_C here and all LOLbins blocked and it has been working without any problems. ;)
1689802970580.png
 
  • Like
  • Applause
Reactions: Gandalf_The_Grey, brambedkar59 and simmerskool

Similar threads

F
    • Like
  • Question
Advice Request Firewall similar to Kaspersky
Replies
14
Views
2,204
Other security for Windows, Mac, Linux
7Oz-64
7Oz-64
J
    • Like
Advice Request Which apps to whitelist in Simplewall to keep system secure?
Replies
2
Views
405
General Security Discussions
JordanMason8
J
Shadowra
    • Like
    • +Reputation
    • Thanks
App Review Norton AntiVirus Plus 2024
Replies
16
Views
1,091
Video Reviews - Security and Privacy
Trident
Trident

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top