Advanced Plus Security Kongo's Computer Security Config 2024

Last updated
Jul 17, 2024
How it's used?
For home and private use
Operating system
macOS 15 Sequoia
On-device encryption
BitLocker Device Encryption for Windows
Log-in security
    • Hardware security key
Security updates
Allow security updates and latest features
Update channels
Allow stable updates only
User Access Control
Always notify
Smart App Control
Off
Network firewall
Enabled
About WiFi router
- Speedport Smart 4
- Firewalla Blue +
Real-time security
Deep Instinct Endpoint Protection
WhitelistCloud
Firewall security
Microsoft Defender Firewall with Advanced Security
About custom security

Hardening tools:
- Firewall Hardening (blocking outbound connections of LOLBins)
- Run by SmartScreen (forces SmartScreen to scan files of choice)

- STOP/DJVU Ransomware Vaccine (immunizes system against this type of ransomware)
- O&O ShutUp10 (recommended settings)
- O&O AppBuster (removed unecessary Windows 11 apps)
- Windows Sandbox



System settings:
- Microsoft Defender running in sandbox (inactive)
- Reputation Based Protections (all modules enabled)
- Smart App Control enabled

- Data Execution Prevention set to AlwaysOn
- Core Isolation: Memory Integrity enabled
-
Kernel-mode Hardware-enforced Stack Protection enabled
- Secure Boot enabled
- Drives encrypted via TPM (BitLocker)
- Windows Update Delivery Optimization disabled
- AutoPlay disabled
- Network Discovery disabled (Public Firewall profile)
- PowerShell --> Constrained Language Mode
- Hide extensions for known file types --> disabled
- Show hidden files --> enabled

- Virtualization enabled (allows Application Sandboxing)
- Custom Exploit Protection Settings for Firefox:
Code:
Block low integrity images - ON
Block remote images - ON
Block untrusted fonts - ON
Control flow guard (CFG) - ON
Data execution prevention (DEP) - ON + Enable thunk emulation - CHECKED
Disable extension points - ON
Force randomization for images (Mandatory ASLR) - ON + Do not allow stripped images - CHECKED
Randomize memory allocations (Bottom-up ASLR) - ON
Validate exception chains (SEHOP) - ON
Validate handle usage - ON
Validate heap integrity - ON
Validate image dependency integrity - ON

Thanks to @oldschool for sharing! :)

ㅤㅤㅤHardware Firewall (Firewalla Blue Plus):
- Active Protect (Strict)
- Ad Block (Strict)
- OISD blocklist enabled in Firewalla
- New Device Quarantine (restricted internet access for newly connected devices)

- Geo-IP Filtering (blocking connections from and to Russian + Chinese IPs)
- Unbound DNS enabled for all devices
‎‎‎ㅤ‎ ‎ ‎ ‎
Periodic malware scanners
Norton Power Eraser, X-Sec and AdwCleaner
Malware sample testing
I do participate in malware testing. See details about my testing environment below.
Environment for malware testing
‎‎‎ㅤㅤㅤ
VMware Workstation Player + Mullvad VPN on host machine while connected to the guest network.

Online Malware Analysis Platforms that I use:


- FileScan.iO
- Intenzer Analyze
- Hybrid Analysis
- VirusTotal
- Sophos Intelix
- ANY.RUN
-
Triage
- Kaspersky Threat Intelligence Portal
- Neiki.Dev
- ThreatZone
- UnpacMe


--> Currently I am barely testing
Browser(s) and extensions

Mozilla Firefox v. 132.0.2

Extensions:
- Ghostery
- SafeToOpen

- Bitwarden


Browser privacy and security settings:
- Tracking protection: Strict (enables Total Cookie Protection)
- Enable secure DNS using: Max Protection
- HTTPS-only-mode enabled
- DuckDuckGo set as search engine
- Pocket disabled
- Sending DNT-requests disabled (enabling makes you more identifiable and barely gives any advantage on most sites.)
- Clearing browsing data on exit
- Search suggestions disabled
- Websites overview disabled
- Blocking incoming location, camera and microphone requests
- AutoPlay for audio and video disabled
- Firefox telemetry disabled (also in about:config)
- Blocking pop-ups
- Warn when websites try to install addons enabled
- Protection against fraudulent content and dangerous software enabled



about:config tweaks:
- network.dns.echconfig.enabled =
true
- network.dns.use_https_rr_as_altsvc = true
- fission.autostart = true
- pdfjs.enableScripting =
false
- network.IDN_show_punycode = true
- security.ssl.require_safe_negotiation = true

- geo.enabled = false
- webgl.disabled = true
- network.trr.mode =
3 (NextDNS)

ㅤㅤ
Secure DNS

- NextDNS with DoH + OISD blocklist (Firefox exclusively)
- Unbound DNS (Network-wide)


Desktop VPN
Proton VPN with Secure Core, NetShield and Permanent Kill Switch
Password manager
Bitwarden Premium
Maintenance tools
PatchMyPC, RuckZuck, UpdateHub, HiBit Uninstaller and Windows built in tools for cleaning and optimization
File and Photo backup
backup to external drive when necessary
Subscriptions
    • Google One Standard 200GB
System recovery
Aomei Backupper
Risk factors
    • Browsing to popular websites
    • Browsing to unknown / untrusted / shady sites
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Downloading software and files from reputable sites
    • Gaming
    • Streaming audio/video content from shady sites
    • Downloading malware samples
Computer specs
GPU: Nvidia Geforce RTX 360 TI
CPU: Intel I5 12600K
RAM: 16 GB DDR4-3200 Crucial
Hard disks: 500 GB Samsung 970 EVO Plus + 1 TB Western Digital Blue
Notable changes
- Updated for year 2024
What I'm looking for?

Looking for minimum feedback.

Trooper

Level 17
Verified
Top Poster
Well-known
Aug 28, 2015
801
About 250 MB on my system according to Task Manager. No slowdowns and barely any CPU usage tho. Running really smooth and it's one of the most responsive products when detecting a threat. The files are immediately quarantined and a notification appears. Really satisfied so far. (y)

Nice I have not used it in years. Wish I had a lifetime license to check it out. Will add it to my list though, cheers.
 

Kongo

Level 36
Thread author
Verified
Top Poster
Well-known
Feb 25, 2017
2,597
Nothing specific actually. I just love to jump between security solutions... 😅

I really had a good time using Vipre but there is still one thing that I highly dislike about it... It barely receives any software updates. I think the last update was in summer last year, and that is quite a long time considering that it's a paid AV. After all, it's really stable, responsive and offers solid protection with the Bitdefender engine and their behaviour blocker. Maybe it doesn't even need any software updates at the moment as it is working well as it is. Still, it always makes me speculate what it means when an AV doesn't get updated within many months. :unsure:
 

Trooper

Level 17
Verified
Top Poster
Well-known
Aug 28, 2015
801
Nothing specific actually. I just love to jump between security solutions... 😅

I really had a good time using Vipre but there is still one thing that I highly dislike about it... It barely receives any software updates. I think the last update was in summer last year, and that is quite a long time considering that it's a paid AV. After all, it's really stable, responsive and offers solid protection with the Bitdefender engine and their behaviour blocker. Maybe it doesn't even need any software updates at the moment as it is working well as it is. Still, it always makes me speculate what it means when an AV doesn't get updated within many months. :unsure:

I hear you. I have been jumping around a bit lately myself. Normally I install what I like and set and forget. I have not used Vipre in some time. It does seem odd that no updates have rolled out since last summer however. Then again, look at Norton lol. I know i's been updated but they have been on version 22 since what, 2014?
 
  • Like
Reactions: Kongo

Kongo

Level 36
Thread author
Verified
Top Poster
Well-known
Feb 25, 2017
2,597
I hear you. I have been jumping around a bit lately myself. Normally I install what I like and set and forget. I have not used Vipre in some time. It does seem odd that no updates have rolled out since last summer however. Then again, look at Norton lol. I know i's been updated but they have been on version 22 since what, 2014?
Well, true. But Vipre is literally only receiving signature updates as far as I know, so they didn't make any improvements to the behaviour blocker or any other moduels if thats true. But well, as far as it is working I shouldn't really care about it I guess. I mean it did quite well when I was still testing in the Hub and it also performed well when @harlan4096 tested it recently: Malware Hub Report - Vipre Advanced Security - March 2022 Report

The pricing is also more than fair, compared to many other AV companies. I might go back to it soon. :)
 

Trooper

Level 17
Verified
Top Poster
Well-known
Aug 28, 2015
801
Well, true. But Vipre is literally only receiving signature updates as far as I know, so they didn't make any improvements to the behaviour blocker or any other moduels if thats true. But well, as far as it is working I shouldn't really care about it I guess. I mean it did quite well when I was still testing in the Hub and it also performed well when @harlan4096 tested it recently: Malware Hub Report - Vipre Advanced Security - March 2022 Report

The pricing is also more than fair, compared to many other AV companies. I might go back to it soon. :)
Tests looks pretty good. Thanks for the link, I missed it. I'd have to trial it again to see how it runs on my system. Can't be any worse then one I was recently checking out. :)

Keep us up to date with your findings and when you decide to go back to Vipre. Cheers!
 

Kongo

Level 36
Thread author
Verified
Top Poster
Well-known
Feb 25, 2017
2,597
Tests looks pretty good. Thanks for the link, I missed it. I'd have to trial it again to see how it runs on my system. Can't be any worse then one I was recently checking out. :)

Keep us up to date with your findings and when you decide to go back to Vipre. Cheers!
Will do! ;)
 
  • Like
Reactions: Trooper

Trooper

Level 17
Verified
Top Poster
Well-known
Aug 28, 2015
801
Jumping around is exhausting. I'm back to not MD without caring. I think acute boredom is what gets me.
Lol it certainly can be. I enjoy it to be honest but it comes in spurts. There will be a period of time when I am jumping like crazy, and then my setup could be stagnant for a really long time.
 
  • Like
Reactions: blackice and Kongo

Kongo

Level 36
Thread author
Verified
Top Poster
Well-known
Feb 25, 2017
2,597
Thanks man that code did not work. Maybe cause they are already offering it fairly cheap. :)
Will check it out more in a bit. Cheers!
I tried it, and got at least a 3 dollar discount. There are other pages similar to this one. Maybe you can find one that works in your region...
 
  • Like
Reactions: Trooper

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top