- Apr 29, 2019
- 168
I'm a bit confised, are these apps similar? Does it make sense to have all three on a W10 system? I already have Emsisoft and CruelComodo.
OSArmor, SysHardener, Hard_Configurator; what are the differences?
- Thread starter camo7782
- Start date
- Jul 29, 2018
- 566
Hard_Configurator and SysHardener are similar, they both tune Windows built-in settings to harden the system.
H_C is more powerful, but in my opinion is better for intermediate to advanced users; SysH can be used by anyone (even if it requires at least a basic knowledge).
OSArmor is a behavior blocker that works in realtime. In my opinion is very good because it's very configurable and doesn't bother you too much with popups.
If you have CruelComodo you don't need any of them.
H_C is more powerful, but in my opinion is better for intermediate to advanced users; SysH can be used by anyone (even if it requires at least a basic knowledge).
OSArmor is a behavior blocker that works in realtime. In my opinion is very good because it's very configurable and doesn't bother you too much with popups.
If you have CruelComodo you don't need any of them.
- Jul 6, 2017
- 2,392
Emsisoft and CruelComodo. That's enough to be protected.
Another thing is that you want to try. But not all together.
Another thing is that you want to try. But not all together.
- Feb 24, 2019
- 408
I used the latter two together when I used Windows, ran SysHardener first and Hard_Configurator after to see if anything was missed (H_C also checks if settings are changed, SH applies settings).
- Jun 24, 2016
- 2,483
Only thing I would change is that OSArmor is not a behaviour blocker, it's a post-exploit protection layer. It will only trigger alerts and block actions once they have been launched.
I would like to use hard configurator ,what would be recommended settings? Thks
- Apr 29, 2019
- 168
what is the point to aleft after a ransomware was able to encrypt your disks?
- Apr 29, 2019
- 168
Neither Emsisoft?
so either SH+OSA or H_C are in either case not needed and redundant with the above software?
- Mar 29, 2018
- 7,596
It has configuration profiles, with the default one > "Recommended settings". Please post further questions in H_C thread.
- Jul 6, 2017
- 2,392
All the programs you mentioned are very good.
But they are not for everyone to work at the same time, there are different configurations. for example Emsi with SH well.Or with OSA, or H_C or Comodo CS/.
But all of them together = Explosion.
- Jul 29, 2018
- 566
Comodo firewall has a cloud lookup feature that works like a cloud av, so you don't really need a dedicated av.
Nevertheless, emsisoft is a great addition to it
- Apr 24, 2016
- 7,233
Emsisoft and Comodo firewall (@cruelsister settings) are enough.
You need no other program.
Don't overthink your protection and make it too complicated.
You need no other program.
Don't overthink your protection and make it too complicated.
A dedicated Anti-Malware/Anti-Virus solution is still better than a half-baked cloud lookup component found in Comodo Firewall.
If you are not familiar how Comodo Firewall works, do not uninstall Emisosft Anti-Malware (edited).
If you are not familiar how Comodo Firewall works, do not uninstall Emisosft Anti-Malware (edited).
Last edited:
- Jun 24, 2016
- 2,483
No, it doesn't work like that. OSArmor works with pre-defined rules. For example: blocking outbound connections to X processes or denying execution of X process. If malware tries to perform any action which a predefined rule has on its configuration, it will be blocked. It doesn't scan the file nor it scans its behaviour, it just compares blocks the action according to the rules. If a new malware includes an evasion technique or a new way to infect you without using a process or action blocked by the loaded rules, OSArmor will just watch it happen.
- Apr 29, 2019
- 168
this is what every AV does when doesn't recognize a new threat
- Dec 23, 2014
- 8,484
H_C, OSA, and SysHardener are the attack surface reduction applications based on restriction rules. All of them can block/restrict scripts, some dangerous types of files, execution from suspicious locations, etc.
The malware/exploit has usually a problem with running on such protected system, or if it could run then it is often mitigated on the later infection stage.
The less restrictive and simplest is SysHardener. The most restrictive is H_C set to default-deny. The more restrictions, the less user-friendly can be the application, and the more skills it requires. Both H_C and OSA can be adjusted to the software installed on the computer due to whitelisting abilities.
H_C and SysHardener are configurators. They can configure/activate the Windows built-in security features, and after this, they do not use real-time processes. All real-time security comes from native Windows security. Such protection is the lightest and most compatible with Windows. OSA uses 3-rd party driver to apply real-time protection, so can have sometimes a compatibility problem with Windows 10 updates/upgrades.
H_C, OSA, and SysHardener should not be used together or in a combo, except when the user knows them very well.
In my opinion, H_C, OSA, and SysHardener should not be used in combo with CF with CS settings (highly restricted autosandbox) because such protection would be inconvenient and too complex.
The malware/exploit has usually a problem with running on such protected system, or if it could run then it is often mitigated on the later infection stage.
The less restrictive and simplest is SysHardener. The most restrictive is H_C set to default-deny. The more restrictions, the less user-friendly can be the application, and the more skills it requires. Both H_C and OSA can be adjusted to the software installed on the computer due to whitelisting abilities.
H_C and SysHardener are configurators. They can configure/activate the Windows built-in security features, and after this, they do not use real-time processes. All real-time security comes from native Windows security. Such protection is the lightest and most compatible with Windows. OSA uses 3-rd party driver to apply real-time protection, so can have sometimes a compatibility problem with Windows 10 updates/upgrades.
H_C, OSA, and SysHardener should not be used together or in a combo, except when the user knows them very well.
In my opinion, H_C, OSA, and SysHardener should not be used in combo with CF with CS settings (highly restricted autosandbox) because such protection would be inconvenient and too complex.
Last edited:
- Jun 24, 2016
- 2,483
Kind of, but here's where behaviour blocker, heuristics or IA modules come into the scenario. Although, most suck. Yet you have a couple of good ones like System Watcher or SONAR. But in most cases, zero day malware pieces will most likely get you crying.
I have Windows Defender with CruelCommodo. I tried to add SysHardener and OSA at some point and got problems I didn't know how to solve mostly limitations like OneDrive stopped working. Sometimes a problem arises a month later and it's very difficult to pinpoint a setting you changed.
Macrium to the rescue!. But I kept the firewall rules of SysHardener.
Macrium to the rescue!. But I kept the firewall rules of SysHardener.
- Mar 29, 2018
- 7,596
Users should not choose settings of any feature they do not understand. This is especially true with OS hardening tools but is true for all software as well. Users who have experienced problems will testify to the this truth.
I have a notebook near my computer where I jot down everything I do on my computer...apps updates, upgrades, new settings, Macrium images, good ideas...etc...Most of the time, I know what or when I did something wrong. But sometimes, I take risks just for the thrill of it....
Even if I know that Windows Defender or Emsisoft with Comodo are enough!
Even if I know that Windows Defender or Emsisoft with Comodo are enough!
Last edited:
Similar threads
