SECURITY: Complete RoboMan's 2021 Security Config

Last updated
Jan 22, 2021
About
Personal, primary device
Additional PC users
Not shared with other users
Desktop OS
Windows 10
OS edition
Pro
Login security
    • Password-less (PIN, Biometric, Face)
Primary sign-in
Microsoft account
Primary user
Admin user - Full permissions
Security updates
Automatic - allow all types of updates
Windows UAC
Maximum - always notify
Network firewall
ISP-issued router
Real-time protection
  • Comodo Firewall
  • SysHardener
Software firewall
Provided by a third-party security vendor. Refer to 'Real-time protection' for details.
Custom RTP, Firewall and OS settings
Comodo Firewall:
  • Auto-containment: ON
  • Virtualization: all unrecognized files
  • Viruscope: ON
SysHardener:
  • Deny execution of all scripts: ON
  • All major configurations: ON
Malware testing
No malware samples
Periodic security scanners
ESET Online Scanner
Windows Defender
Emsisoft Emergency Kit
Secure DNS
Cloudfare DNS (malware)
VPN
Windscribe
Password manager
Bitwarden
Browsers, Search and Addons
Microsoft Edge

Extensions:
  • uBlock Origin
  • Universal Bypass
  • Bitwarden
  • I don't care about cookies
  • BitDefender TrafficLight
Maintenance and Cleaning
Bleachbit (added automated task to clean every day)
Personal Files & Photos backup
OneDrive 100GB with automatic backup
Personal backup routine
Automatic (scheduled)
Device recovery & backup
Macrium Reflect Free
Device backup routine
Manual (maintained by self)
PC activity
  1. Working from home. 
  2. Browsing the web. 
  3. Emails. 
  4. PC and cloud gaming. 
  5. Multimedia. 
  6. Streaming. 
Computer specs
Intel Core i7 7700HQ
16GB RAM
Nvidia GTX 1060 6GB VRAM
Feedback Response

Most critical feedback

RoboMan

Level 32
Verified
Content Creator
Jun 24, 2016
2,195
Morning fellas,

As from yesterday, this is my primary protection configuration.

I had about 40 days left for my Kaspersky license, but I was already experiencing some issues with certain applications (which Kaspersky support is trying to fix for more than a year now), so I decided to migrate anyways. I am not a fan of Windows Defender resource consumption, so I disabled it for good.

As for real time protection, I went with WiseVector StopX due to it's great malware protection capabilities. Since it's a basic antivirus with no extra modules, and taking into account the IMPORTANCE of default deny modules in 2021, I paired it up with VoodooShield (premium), which is configured to stay always ON. As an extra help, I hardened Windows with SysHardener.

I don't think I leave much of an open door for attack surface, but I'm 100% open for feedback and suggestions if you feel like I need it. I'm trying to avoid overkilling my laptop.

Thank you and stay safe.
 

RoboMan

Level 32
Verified
Content Creator
Jun 24, 2016
2,195
October 4th/2021

rev002: I changed yesterday my configuration, WiseVector wasn't fullfilling my needs, my security configuration now stands as follows.

First line of defense: protecting my browser with
  • Ad blocking: uBlock Origin
  • Malware Protection: BitDefender TrafficLight
Real time protection: if anything manages to get through
  • Comodo Firewall: cruelsister's variation, which basically consists on
  1. Auto-virtualization of all unrecognized files (all those which do not match the Vendors List signature)
  2. HIPS: off
I also made sure Viruscope is enabled since it doesn't bother me and it's good to have it there.

So now I have a solid firewall filtering traffic, handling suspicious/unknown files, and a protected browser. But of course this isn't new, it's the config I always end up coming back to :)
 
Top