- Mar 10, 2023
- 144
iDefender
- Thread starter B-boy/StyLe/
- Start date
The company was renamed Trusing.
The translation offers an explanation of their HIPS software:
iDefender breaks the traditional object-based operation protection model (such as file addition, deletion, modification, reading and other operation defense), adopts an innovative rule model based on scenario mode (such as prohibiting process startup, document protection, privacy protection), and designs. The rules engine based on templates + parameters greatly reduces the difficulty of editing defense rules. It also provides a rules market, making the sharing and acquisition of rules within easy reach.
In terms of performance, the iDefender rule engine adopts double cache mode, which improves the matching efficiency to the extreme. There is almost no performance consumption on the system without setting the rules incorrectly. There will be no memory growth or cumulative performance consumption during long-term operation. It is not only suitable for personal computers, but also for cloud servers.
iDefender completely uses the standard kernel API recommended by Microsoft to implement its functions. It has good compatibility and can coexist well with other security software.
The translation offers an explanation of their HIPS software:
The difference between iDefender and other HIPS software
People often ask, what is the difference between iDefender and other HIPS software, and why choose iDefender instead of other security software.iDefender breaks the traditional object-based operation protection model (such as file addition, deletion, modification, reading and other operation defense), adopts an innovative rule model based on scenario mode (such as prohibiting process startup, document protection, privacy protection), and designs. The rules engine based on templates + parameters greatly reduces the difficulty of editing defense rules. It also provides a rules market, making the sharing and acquisition of rules within easy reach.
In terms of performance, the iDefender rule engine adopts double cache mode, which improves the matching efficiency to the extreme. There is almost no performance consumption on the system without setting the rules incorrectly. There will be no memory growth or cumulative performance consumption during long-term operation. It is not only suitable for personal computers, but also for cloud servers.
iDefender completely uses the standard kernel API recommended by Microsoft to implement its functions. It has good compatibility and can coexist well with other security software.
Last edited:
Have you thought of writing some additional rules for iDefender HIPS to make it more robust? Worth looking into. It should be tweakable with custom rules.
- Mar 10, 2023
- 144
Sound like a good idea. However, with my new job I rarely have the time to test and actively participate in malware analysis or security products reviewing, unfortunately. I am still actively submitting bugs to be fixed to various software and game developers tho and reporting missing malware samples to many security vendors, but still not like in my active/prime years ten years ago.
But will try my best if I have more spare time to do so.Sound like a good idea. However, with my new job I rarely have the time to test and actively participate in malware analysis or security products reviewing, unfortunately. I am still actively submitting bugs to be fixed to various software and game developers tho and reporting missing malware samples to many security vendors, but still not like in my active/prime years ten years ago.
A package of additional rules would make it stronger like the one a poster here compiled for Huorong Internet Security. A desideratum for the future.
- Mar 10, 2023
- 144
Version 4.0 released. A lot of new features including a sandbox
- Mar 10, 2023
- 144
Lol, this is a huge update with a lot of major changes. This version needs to be re-tested by @cruelsister and @Shadowra.
With Google Translate:
Similar threads
