Advanced Security Morro Security Configuration 2025

[Morro]

The biggest change is that I switched from Bitdefender TS to ESET Smart Security Premium. And went back to Bitwarden and also NextDNS. (NextDNS is for now, I could change that back to Quad9. )

As for maintenance tools, I still use these.

* Windows own tools.
* Wise Diskcleaner.
* Driver Store Explorer
* For software updates, I run this command once a week in Powershell.

winget upgrade --all --include-unknown --accept-package-agreements --accept-source-agreements

 

[Vitali Ortzi]

The biggest change is that I switched from Bitdefender TS to ESET Smart Security Premium. And wet back to Bitwarden and also NextDNS. (NextDNS is for now, I could change that back to Quad9. )

As for maintenance tools, I still use these.

* Windows own tools.
* Wise Diskcleaner.
* Driver Store Explorer
* For software updates, I run this command once a week in Powershell.

winget upgrade --all --include-unknown --accept-package-agreements --accept-source-agreements

If you use all the security features of next DNS it should be as good as quad9 (assuming it's comparable to DNSEU zero with providers etc)

Anyway it's a really good simple setup with great performance

If you ever wanted to make it more complex then adding firewall rules from Andy ful tools

Using exploit guard settings from this as a base GitHub - neohiro/ExploitProtection: Windows Exploit Protection Settings (Ultimate) as well as disabling V8 would have helped a lot against some advanced attacks

Btw you don't need ublock as brave AdBlock you already have is more advanced then chromium version of ublock

If you wanted to add extensions for pishing malware etc use only those from popular security companies and ones that aren't heavy

Personally here is some I use Hot Take - extensions can help a lot against phishing
(If any extension is missing from the store I could send a crx file )

 

[Morro]

Thank you, I will check those links out.

 

[Nikos751]

Why leave bitdefender TS?

 

[Morro]

Why leave bitdefender TS?

- I paid for a security suite and still got an add from them. (Trying to push the higher tier.)
- It has around 16 to 20 or so running processes, and on my PC it was using between 700 MB to 1 GB of memory. (Not a real problem with 32 GB memory, but still.)
- For me personally, the customer service was not good. Only in the beginning was I helped good. After that, when there was something that I asked about, it almost always felt a bit rude, or like they were not interested.


Now do not get me wrong, the program itself works really great, but those things above combined was finally enough for me to not continue the subscription. ESET Smart Security Premium has only 5 running processes, and in total seems to only use around 87 / 88 MB. Compared to BDTS that is a huge difference.

 

[Morro]

After reading an article that oldschool linked to, I switched to Brave's own Password manager. I have set it so it needs Windows Hello to use a password. That combined with the fact that ESET is protecting Brave's folder in Appdata and Brave also has a "Shield" so to speak from ESET I feel better.

I am using KeepassXC as a backup for my passwords, and as the program with which I will make new passwords if needed.

 

[rashmi]

I am using KeepassXC as a backup for my passwords, and as the program with which I will make new passwords if needed.

I tried KeePassXC, and it is nice; however, I wish it had an Android application. According to the FAQ, there's no Android version planned; they suggest using other forks. KeePassXC also appears to lack data storage features.

 

[Morro]

I tried KeePassXC, and it is nice; however, I wish it had an Android application. According to the FAQ, there's no Android version planned; they suggest using other forks.

Yeah, that is too bad that there is no Android version.

 

[rashmi]

Yeah, that is too bad that there is no Android version.

KeePassXC suggests using KeePassDX and KeePass2Android on Android phones. KeePass2Android has a similar interface to KeePassXC. Both apps support KeePassXC and other KeePass ports. Have you used KeePassDX or KeePass2Android?

KeePassDX KeePassDX - FOSS Password Safe - Apps on Google Play
KeePass2Android Keepass2Android Password Safe - Apps on Google Play

 

[Morro]

KeePassXC suggests using KeePassDX and KeePass2Android on Android phones. KeePass2Android has a similar interface to KeePassXC. Both apps support KeePassXC and other KeePass ports. Have you used KeePassDX or KeePass2Android?

KeePassDX KeePassDX - FOSS Password Safe - Apps on Google Play
KeePass2Android Keepass2Android Password Safe - Apps on Google Play

No, I can not say that I have, but thank you for the links, one of these days I will check them out,

 

[Morro]

@rashmi

* KeePassDX: For me, it does not recognize the database import file from KeepassXC or an import with either a json or csv file.
* KeePass2Android: Got blocked by Google the split second I clicked on "My Drive" in Google Drive.

So for my smartphone I will stick with Bitwarden.

 

[Morro]

Added WHHLight, but I only activated SWH, I do not believe I will have to activate the other two options because of ESET Smart Security Premium.

 

[Digmor Crusher]

Added WHHLight, but I only activated SWH, I do not believe I will have to activate the other two options because of ESET Smart Security Premium.

I'm using Smart Security with WHHL and WDAC with no issues that I can see. Whether its needed or not is a question I cannot answer.

 

[Morro]

I'm using Smart Security with WHHL and WDAC with no issues that I can see. Whether its needed or not is a question I cannot answer.

Hmm, I will try it out then, thank you.

EDIT: Just activated WDAC as well.

 

[Szellem]

Hmm, I will try it out then, thank you.

EDIT: Just activated WDAC as well.

And they don't slow down the machine? Don't things happen more slowly?
I installed DefenderUI Pro yesterday and noticed that things are slower on my machine. I understand the need for protection, but it drives me crazy when something slows me down.
For example, I love Kaspersky, but it also makes me crazy. It fits in with sound card and video drivers. And they start to suck after a while, especially if they are updated. Same problem with Call of Duty. With Kaspersky, it will start up incorrectly or you have to start it several times, and without Kaspersky it runs flawlessly. Even if I make it trusted or make exceptions, the code injection still works.

 

[Morro]

Now that I have SWH and WDAC enabled, it does happen from time to time that a program starts a little slower, but not enough to bother me. And my computer's boot time is still 17.2 seconds, so I am not worried about it.

 

[Morro]

After trying out Vivaldi for a few days, I have replaced Brave with Vivaldi. It is fast, customizable, and it has quit the method of making an account. A username and age is needed (Feel free to lie.) including an e-mail. After that you get an account activation code, which is followed by you having to make a coding password that is supposedly only known to you and is needed to encrypt your account info. (I was particularly nasty with that one. )

I have also placed Vivaldi's AppData folder in ESETS Folder guard.

 

[Ameise]

And they don't slow down the machine? Don't things happen more slowly?
I installed DefenderUI Pro yesterday and noticed that things are slower on my machine. I understand the need for protection, but it drives me crazy when something slows me down.
[...]

You should use ConfigureDefender. Does almost the same.

 

[rashmi]

Are you on 24H2? How does your boot screen for multiple operating systems look (if you have the Hasleo boot menu)? Here, half the screen is pink and the other half is black. I wonder if it's an issue or something new in 24H2.

 

[Morro]

My Boot screen looks as it should, Windows Blue with Windows at the top and Hasleo below it. And yes I am on 24h2.