It makes no sense to run NVT ERP and Voodooshield together; the duplication can result in conflicts\malfunctions at worst and double alerts for the same things at best.Added.......... VoodooShield Free
There isn't much difference between the cores of NVT ERP and VS - except NVT ERP does not have auto-lookup for file reputation, Ai, local sandbox and Cuckoo Sandbox.I am testing VS, because in the past it didn't run well on my laptop so I'm trying it out again. NVT is a bit different then VS is it not? I have never had any problems in the past with NVT and VS or NVT and SecureAPlus for example.
NVT ERP is an anti-executable that has the ability to monitor and whitelist rundll32 command lines and create a custom list of monitored Windows vulnerable processes.Now that I think about it, what's the difference in using NVT with Appguard (I know some people have used this combo) and NVT with VS?
So what is the advantage of using NVTERP with Appguard? When I tried it a long time ago I never got any alerts at all from NVT.NVT ERP is an anti-executable that has the ability to monitor and whitelist rundll32 command lines and create a custom list of monitored Windows vulnerable processes.
VS is an anti-executable that has the ability to monitor and whitelist rundll32 command lines, but the list of monitored Windows vulnerable processes is hard-coded and not customizable. NOTE: You'd have to ask Dan about the full list of hard-coded Windows vulnerable processes.
AppGuard is software restriction policy soft:
- It blocks execution of files from User Space
- It blocks execution of the most vulnerable file types
- It runs vulnerable processes with limited access rights (non-Admin)
- It provides inter-process (side-by-side) memory protections
- User can create custom list of blocked\allowed vulnerable Windows processes
Why some combo NVT ERP and AppGuard ?So what is the advantage of using NVTERP with Appguard? When I tried it a long time ago I never got any alerts at all from NVT.
Nope, both were active but no erp alerts... anyways, i am testing VS for a few days to maybe a week and if I decide to keep it for awhile I will either uninstall or disable ERP.Why some combo NVT ERP and AppGuard ?
It would be rather difficult to get physical system persistently infected with both NVT ERP and AppGuard installed on system
- It is paranoid Default-Deny config and satisfies those that are paranoid
- It is two different classes of protection and they each compliment and supplement each other
- When disable AppGuard for soft updates or installs, NVT ERP continues to monitor entire system
* * * * *
If you did not get any alerts from NVT ERP when you tried it, that is surefire indication something wasn't right. Perhaps it was stuck in Learning Mode or Off ?
It's probably not your laptop.Well due to some lag in responsiveness that I can't deal with for very long, I had to remove Voodooshield even though I love the program... I am back to my favorite anti-exe NVTERP (light as a feather on all my systems) and I have reinstalled keyscrambler...I think I have the most finicky laptop on the planet!