Moonhorse

Level 29
Verified
Content Creator
Gonna give this thread a bump, can someone @Evjl's Rain or some else update this thread to current state

what ive seen is:
- comodo extension is dead
- malwarebytes extension is updated most frequently
- emsisoft update is been updated 2 years ago last time
- its hard to beat bitdefender trafficlight, as it blocks pretty much everything

And as bonus, this domain been up for 9 days and nothing is blocking it, if you can submit it to your vendor go on (y)
 

SeriousHoax

Level 29
Verified
Malware Tester
Gonna give this thread a bump, can someone @Evjl's Rain or some else update this thread to current state

what ive seen is:
- comodo extension is dead
- malwarebytes extension is updated most frequently
- emsisoft update is been updated 2 years ago last time
- its hard to beat bitdefender trafficlight, as it blocks pretty much everything

And as bonus, this domain been up for 9 days and nothing is blocking it, if you can submit it to your vendor go on (y)
Already detected by TrafficLight. I just submitted to almost all the popular AV vendors including smartscreen and Google safe browsing.
 

TairikuOkami

Level 28
Verified
Content Creator
And as bonus, this domain been up for 9 days and nothing is blocking it, if you can submit it to your vendor go on (y)
That webpage itself is just a frontline, check the login (once you click on Try Free), that should be blocked.
 

Attachments

  • capture_07262020_175607.jpg
    capture_07262020_175607.jpg
    43.5 KB · Views: 67

imuade

Level 11
Verified
Gonna give this thread a bump, can someone @Evjl's Rain or some else update this thread to current state

what ive seen is:
- comodo extension is dead
- malwarebytes extension is updated most frequently
- emsisoft update is been updated 2 years ago last time
- its hard to beat bitdefender trafficlight, as it blocks pretty much everything

And as bonus, this domain been up for 9 days and nothing is blocking it, if you can submit it to your vendor go on (y)
Blocked by Blocksi Web Filter set to block unrated websites
Immagine.jpg
 

Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
I have some free time today and performed a test
15 links from urlhaus. No time for phishing

Extensions:
Chrome's safebrowsing: block 12/15 + warn: 3/15 = 15/15
Bitdefender: 14/15
Malwarebytes: 10/15
Avira: 8/15
Norton: 7/15
Emsisoft: 5/15
Microsoft WDBP: 5/15 (tested a few times, same result)

DNS:
neustar (Threat Protection): 14/15
nextDNS: 14/15
quad9: 9/15
adguard family: malware 2/15 | adult 4/15 = 6/15
cleanbrowsing secure: 5/15
cloudflare malwares+adults: 2/15
openDNS family: 2/15
 

razorfancy

Level 2
Verified
I have some free time today and performed a test
15 links from urlhaus. No time for phishing

Extensions:
Chrome's safebrowsing: block 12/15 + warn: 3/15 = 15/15
Bitdefender: 14/15
Malwarebytes: 10/15
Avira: 8/15
Norton: 7/15
Emsisoft: 5/15
Microsoft WDBP: 5/15 (tested a few times, same result)

DNS:
neustar (Threat Protection): 14/15
nextDNS: 14/15
quad9: 9/15
adguard family: malware 2/15 | adult 4/15 = 6/15
cleanbrowsing secure: 5/15
cloudflare malwares+adults: 2/15
openDNS family: 2/15
At least for me on Edge Chromium with SmartScreen and PUA options enable was able to blocked 8 downloads, but didnt block any of the .doc files.
 

Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
At least for me on Edge Chromium with SmartScreen and PUA options enable was able to blocked 8 downloads, but didnt block any of the .doc files.
true, smartscreen is definitely better than the extension
but somehow, in this test, it failed to block .doc files. It usually performs well in this category according to last tests
 

razorfancy

Level 2
Verified
true, smartscreen is definitely better than the extension
but somehow, in this test, it failed to block .doc files. It usually performs well in this category according to last tests
btw I test the links with McAfee WebAdvisor extension for Edge Chromium and it wasnt able to block any of them.
Really weird usually in my tests McAfee WebAdvisor extension performs well.
 

sepik

Level 9
Only i'm using is nano adblocker and html5 video autoblocker. Never got infected. My Trend Micro scans all the HTTP(S) by default, so i'm pretty safe. Dozens of stupid "privacy" browser extensions which clash each others are worthless actually, you will get tracked down.
 

security123

Level 25
Verified
Only i'm using is nano adblocker and html5 video autoblocker. Never got infected. My Trend Micro scans all the HTTP(S) by default, so i'm pretty safe. Dozens of stupid "privacy" browser extensions which clash each others are worthless actually, you will get tracked down.
You can config video autoplay in browser.

Https scanning is dangerous as all your https connections are compromised and can't be verified. Maybe they even decrease to TLS 1.2
 

silversurfer

Level 64
Verified
Trusted
Content Creator
Malware Hunter
Https scanning is dangerous as all your https connections are compromised and can't be verified. Maybe they even decrease to TLS 1.2
Almost all major AV vendors scanning HTTPS connections by default to be able detecting malicious activities on all websites, there are working real security experts for these companies, so why those people believe it's necessary to scan even on HTTPS ;)
 

Raiden

Level 18
Verified
Content Creator
Almost all major AV vendors scanning HTTPS connections by default to be able detecting malicious activities on all websites, there are working real security experts for these companies, so why those people believe it's necessary to scan even on HTTPS ;)
Just playing devils advocate :p, but has anyone proved it was better, or are we just basing it on AV vendors telling us it is better?;)

I guess the question is, what ate they actually trying to stop? If it's downlowing files, then what's the purpose of the file scanner? Shouldn't it be scanning all downloaded files? I guess we could say detecting credit card skimmers, but many of those still go undetected by most AVs. So i guess the question is, what is the real purpose of scanning https traffic? After all its been known to cause quite a few issues, as https wasn't designed to work in this manner.

Not saying it's not worth it, just trying to inject some thought into the conversation. After all all I've seen from AV companies is them s aying, to stop the bad guys, but in all honesty, that's a pretty generic statement.:cool::emoji_beer:
 

security123

Level 25
Verified
Almost all major AV vendors scanning HTTPS connections by default to be able detecting malicious activities on all websites, there are working real security experts for these companies, so why those people believe it's necessary to scan even on HTTPS ;)
Microsoft Defender don't destroy TLS ;)

these security experts AV manufacturer only want selling their product so they include as much as possible features and "shine" with looks-important stuff like https scanning. In fact this only makes trouble and decrease security.
HTTPS scanning is only a option for companies.
 
  • +Reputation
Reactions: TairikuOkami
Top