Technozz Security Config

[Technozz]

Other Software:
Anti Exploit : Malwarebyte Anti Exploit Free
Virtual Machine : Oracle VM Virtualbox
Sandbox : Sandboxie Free
Music Player : Foobar2000, Musicbee
Video Player : MPC HC x64
Text Editor : Sublime Text 3 x64
Compression Tools : 7Zip, WinRAR
Torrent Downloader : Tixati Portable

This is my security config.Any suggestions would be appreciated

 

[Captain Awesome]

Looks good for me,just add Malwarebyte Anti-Exploit Pro/Free.

 

[DJ Panda]

Looks good I recommend changing anything IoBit related with something else live Revro Uninstaller Pro. Also setting updates to automatic is a good thing to do as well.

 

[Captain Awesome]

Create New Member Introductions: New Member Introductions thread.

 

[Technozz]

Looks good I recommend changing anything IoBit related with something else live Revro Uninstaller Pro. Also setting updates to automatic is a good thing to do as well.

Many Thanks for suggestion, I was edit the post to add Hitman.Pro Alert for Exploit Protection, For OS Update i was set manual because i have one more laptops and limited bandwidth and internet speed For this, i use Windows Update Minitool for download update and DISM for install an update on every laptops

 

[Captain Awesome]

Torrent Downloader : Tixati Portable

This is risky for your PC.Torrents are dangerous it can bring Ransomware and Exploit kit so i recommend not to use this.

 

[LabZero]

I assume that you have a data limited connection to justify Windows updates set on manual.
Good security config, thanks for sharing.

 

[Duotone]

Looks good...

• Geek Uninstaller would be a better choice
• you have "Sandboxie" run Tixati portable sandboxed its safer that way.

Nothing to add and by the way HMP.A is a real-time protection, thanks for sharing!!

 

[Technozz]

This is risky for your PC.Torrents are dangerous it can bring Ransomware and Exploit kit so i recommend not to use this.

For downloading torrent i always run Tixati on sandboxie and only download trusted file such as Ubuntu ISO and scan files after complete downloading and not dowloading with torrent everyday just sometimes

 

[LabZero]

This is risky for your PC.Torrents are dangerous it can bring Ransomware and Exploit kit so i recommend not to use this.

Torrent is not dangerous but what you choose to download can be dangerous/infected.

 

[Exterminator]

Looks good!! Thanks for sharing your config

Torrent is not dangerous but what you choose to download can be dangerous/infected.

I agree 100 % and thry can be downloaded in a Sandbox or Virtual Enviroment

 

[Ink]

Looks good for me,just add Malwarebyte Anti-Exploit Pro/Free.

ESET has an Exploit Blocker.

While ESET’s scanning engine covers exploits that appear in malformed document files and Network Attack Protection targets the communication level, the Exploit Blocker technology blocks the exploitation process itself.
Exploit Blocker monitors typically exploitable applications (browsers, document readers, email clients, Flash, Java, and more) and instead of just aiming at particular CVE identifiers it focuses on exploitation techniques. When triggered, the behavior of the process is analyzed and, if it is considered suspicious, the threat may be blocked immediately on the machine.
This technology is under constant development, new methods of detection are added regularly to cover new exploitation techniques.

For the complete description see the white paper.

ESET Technology | Continually developing leading-edge protection

 

[enaph]

Looks good to me, but one remark: HitmanPro.Alert is a realtime anti-exploit protection and not on demand scanner

 

[soccer97]

Looks good to me, but one remark: HitmanPro.Alert is a realtime anti-exploit protection and not on demand scanner

Great Point, HitManPro.Alert (active anti-exploit program) contains a 1-click button for HitmanPro to download and scan the PC in the GUI (and when exploits are blocked it immediately offers to scan).

HitmanPro.Alert: Active
HitManPro: On-demand scanner

Otherwise, with ESET and Zemana it looks good.


Windows Update:
*You may want to set a calendar or Outlook reminder for the 2nd Tuesday (Patch Tuesday) of every month to remember to run Windows update (best done in the evening). The day after is a good choice too. Flash Player, Browsers and some things such as Java and Adobe Reader tend to update on or near these times to help streamline the deployment process.

Welcome to the forums.

 

[Technozz]

Update config and build from scratch

 

[frogboy]

The updated config looks good to me.

Thanks for sharinf it.

 

[King Alpha]

It's good indeed. Thanks for sharing!

 

[Technozz]

I like your config! I would recommend 2 things for Keepass.
Browser extension:
I'm not sure if you use it because I couldn't find in the extension list but Keefox is superior compared to chromeIpass.
In-built search and list.
Database backup:
I strongly recommend to use 1 more cloud backup like Dropbox or GoogleDrive. Two backups are better than a single one!
I would also turn off auto sync option if you wanna use desktop app because ransomwares can encrypt the database and the app will sync them. I prefer no desktop apps and only manual sync of keepass database.

That's all

For now I not use any above extension, but i use "Perform Auto-Type" feature in keepas, so i can't manually retype if want to login, And for DB i cannot autosync with OneDrive desktop client, i use "KeeAnywhere" the Keepass plugin for load DB directly from my OneDrive

 

[Noxx]

I've got nothing to add. Thanks for sharing.

 

[Lucent Warrior]

I see you utilize the ability to defer windows upgrades in the Pro version, which still allows security patches, not a bad thing, sometimes they rush a little to fast dropping those. From what i have just read here, this is a very solid configuration, only thing i would change is where you store Keepass, as i would use the portable version and have it stored externally instead of the cloud.