Serious Discussion Which AV are you using and why did you choose this one ??

[TuxTalk]

I am using Eset Smart Security Premium for 10 devices.

Its light, got Live Guard and i got it for free from my work.

I tested alot of other AV in the past years.

So what do you use and what made you decide to use this AV ?

 

[Bot]

As an AI, I don't use antivirus software. However, I can provide information and advice about various antivirus programs based on user reviews and expert opinions.

 

[Vitali Ortzi]

I am using Eset Smart Security Premium for 10 devices.

Its light, got Live Guard and i got it for free from my work.

I tested alot of other AV in the past years.

So what do you use and what made you decide to use this AV ?

Using ESET endpoint advanced it's pretty lightweight for an av and us the main reason I have chosen ESET and secondary the accuracy of signatures but I have added hitmanpro.alert , Symantec(firewall, ips only ),comodo(cruel sister settings )as layers and even with a lot of security software the system feels responsive

 

[Vitali Ortzi]

As an AI, I don't use antivirus software. However, I can provide information and advice about various antivirus programs based on user reviews and expert opinions.

What do you think about adding only firewall modules of Symantec and using hitmanpro.alert with ESET what kind of exploit mitigations and process evasion does hitman pro alert cover that exploit guard and eset cannot



And how good is Symantec IPS

 

[Sandbox Breaker]

What do you think about adding only firewall modules of Symantec and using hitmanpro.alert with ESET what kind of exploit mitigations and process evasion does hitman pro alert cover that exploit guard and eset cannot



And how good is Symantec IPS

HMPA covers alot of interprocess behaviors. Dll hijacking, process hollowing, heap analysis, CTF guards and alot more and it's all hardware assisted.

Hard to get any ROP to work without it intercepting the flow

It also fences applications so they even exploits that bypass still get stopped in post exploitation tactics like injection and child process creation.

 

[k1esa]

I am using Eset Smart Security Premium for 10 devices.

Its light, got Live Guard and i got it for free from my work.

I tested alot of other AV in the past years.

So what do you use and what made you decide to use this AV ?

I use the same AV. Fast, reliable and I think safe. At the moment I like ESET and Bitdefender the most. But I chose ESET for speed.

 

[Digmor Crusher]

Microsoft Defender:
Free
Built into the OS
Effective
Easy to use
Can be augmented with either Dan's or Andy's tools to make it even stronger

What more do you need?

 

[Jonny Quest]

Along with TrafficLight free, and WFC free as needed or desired.

 

[Marko :)]

Microsoft Defender:
Free
Built into the OS
Effective
Easy to use
Can be augmented with either Dan's or Andy's tools to make it even stronger

What more do you need?

Same here. But I'm using it with SmartScreen, cloud and automatic sample submission disabled for privacy reasons.

You forgot one (if not) the most important thing–it's made by Microsoft meaning it will never cause you issues with compatibility.

 

[Captain Holly]

Windows Security on default settings except for CFA is turned off and phishing protection is turned on. Also using MBAM Premium with the MB Browser Guard extension in Edge, Chrome and Firefox. Edge is my default browser, the main reason is for its integration with Windows Security. Windows Security is very good nowadays, I have no need to use any other third party AV. I have a lifetime license for MBAM.

C.H.

 

[Vitali Ortzi]

HMPA covers alot of interprocess behaviors. Dll hijacking, process hollowing, heap analysis, CTF guards and alot more and it's all hardware assisted.

Hard to get any ROP to work without it intercepting the flow

It also fences applications so they even exploits that bypass still get stopped in post exploitation tactics like injection and child process creation.

Wanted the bot to answer seems like it didn't work XD

 

[Vitali Ortzi]

from my understanding windows exploit guard and asr rules can protect against a lot of the same types of mitigations but since hitmanpro.alert although have a lot of similar mitigations it does work differently wnd covers some stuff exploit guard doesn't have yet (probably adds checks in other areas in memory for example , and has extra behavior based post exploitation that some isn't necessarily present in windows ATP )
So I'm using it as an added defense after adding exploit guard mitigations from this template GitHub - neohiro/ExploitProtection: Windows Exploit Protection Settings (Ultimate) and I have manually added comodo to both hitmanpro.alert and exploit guard (although it shouldn't stop the type of bypasses used in Andy ful challenge but still will help against mainly memory based overflows)

HMPA covers alot of interprocess behaviors. Dll hijacking, process hollowing, heap analysis, CTF guards and alot more and it's all hardware assisted.

Hard to get any ROP to work without it intercepting the flow

It also fences applications so they even exploits that bypass still get stopped in post exploitation tactics like injection and child process creation.

 

[Minimalist]

I'm using Eset Nod32 Antivirus. I use it because it's light and it doesn't make much false positive detections. Well exception is it's PUA protection, which can be aggressive so I disable it.
I use antivirus version because I don't need features offered by higher protection plans. I hope that, in future, they don't remove Antivirus version from their offer.

 

[Back3]

I used F-Secure Safe for the last four years, and it was a good piece of software. However, I found a great deal for Avast Premium Security on Serial Cart and bought it for three years.

 

[CloudyDefense]

Panda Dome free av 2024 + AppCheck AR + Avira Browser Safety

Light Setup
not too aggressive since i like to dev stuff. (Panda will ask before it will quarantine a file )
Silent setup, no ads, no nags
Panda still provides low/mediocre behavior protection via collective intelligence.
AppCheck Protect against ransomware if panda let door loose, so my school projects wont easily get damaged
I am using Avira Browser Safety + ApGuard browser extension because no web protection provided by panda.

Panda has lower protection compared to others rivals but it will do the job for me. i'm Having very safe browser habits also.

 

[Game Of Thrones]

Eset and Kaspersky protect many of our systems; both protect my home systems, some on Kaspersky and some on Eset. We thoroughly evaluated many security suits for businesses and employee home environments, testing performance, false positives, and detection. When you want all of them, it's really hard to beat Kaspersky and Eset. The fun part is that they work great on default and do not require heavy maintenance!! to work. we use eset on high setting because in our evaluation the high setting does not affect performance or false positive, I don't know why eset does not ship their apps with the default high setting. we tested Trendmicro ( a great one but still the two I mentioned win), avast, Bitdefender, McAfee, Norton,f-secure, and some others. it took about 3 months to test them all and even some of our devs wrote malware with Mitre attack techniques implemented and some other form of malware, eset and Kaspersky won. we evaluated them on some low-spec systems still these two won.

remember if you want better protection from eset it's better to use them on systems that have intel TDT support, for systems that are old and do not have TDT, it is better to use Kaspersky

 

[Dave Russo]

Appguard- Eset premium, was going with Microsoft Defender, but Cruel Sister, got me concerned with Firewall's, potential flaw so I switched

 

[Jonny Quest]

Same here. But I'm using it with SmartScreen, cloud and automatic sample submission disabled for privacy reasons.

You forgot one (if not) the most important thing–it's made by Microsoft meaning it will never cause you issues with compatibility.

I had to change my vote to 100.
The "you forgot one" really was, is profound. No more issues of a 3rd party AV possibly being glitchy in itself or of causing compatability issues with other non installed Microsoft software.

Since F-Secure lately is like watching a slow motion train wreck, and now that I'm retiring and no longer need the Internet for my work PCs (canceled it 3 days ago) I uninstalled F-Secure and Avira Pro I had on my personal notebooks and am just going to use Windows Security with TrafficLight and Glasswire free on my notebooks I'll be occasionally tethering with my phone, and the coffee shop visits.

I really don't download anything anymore, but am just using what's already on my notebooks and basic everyday browsing to my favorite sites. I do have Proton VPN free installed if I ever want to tunnel a connection on a public wifi hotspot.

So for now, no more AV overkill.

 

[outlawxtorn]

Eset Smart Security Premium as well.
Light, good protection, good for gaming.

 

[superleeds27]

Eset and Kaspersky protect many of our systems; both protect my home systems, some on Kaspersky and some on Eset. We thoroughly evaluated many security suits for businesses and employee home environments, testing performance, false positives, and detection. When you want all of them, it's really hard to beat Kaspersky and Eset. The fun part is that they work great on default and do not require heavy maintenance!! to work. we use eset on high setting because in our evaluation the high setting does not affect performance or false positive, I don't know why eset does not ship their apps with the default high setting. we tested Trendmicro ( a great one but still the two I mentioned win), avast, Bitdefender, McAfee, Norton,f-secure, and some others. it took about 3 months to test them all and even some of our devs wrote malware with Mitre attack techniques implemented and some other form of malware, eset and Kaspersky won. we evaluated them on some low-spec systems still these two won.

remember if you want better protection from eset it's better to use them on systems that have intel TDT support, for systems that are old and do not have TDT, it is better to use Kaspersky

Can you share your Eset settings/config. I'd be interested to see how it differs from default