Author Topic: COMODO Leak Test Suite Updated Version  (Read 235278 times)

Offline JoWa

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 5278
  • I believe in doubt.
    • Evolutionary history of life
Re: COMODO Leak Test Suite Updated Version
« Reply #150 on: June 30, 2017, 02:17:59 AM »
Windows 7 (SP1) 64-bit. Italic = protected on Windows 10.

Administrator: 190/340
4. RootkitInstallation: ChangeDrvPath Vulnerable
6. Invasion: RawDisk Vulnerable
8. Invasion: FileDrop Vulnerable
10. Injection: SetWinEventHook Vulnerable
11. Injection: SetWindowsHookEx Vulnerable
12. Injection: SetThreadContext Protected
13. Injection: Services Vulnerable
15. Injection: KnownDlls Vulnerable
21. InfoSend: DNS Test Vulnerable
23. Impersonation: ExplorerAsParent Vulnerable
24. Impersonation: DDE Vulnerable
25. Impersonation: Coat Vulnerable
28. Hijacking: Userinit Vulnerable
30. Hijacking: SupersedeServiceDll Vulnerable
31. Hijacking: StartupPrograms Vulnerable
33. Hijacking: AppinitDlls Vulnerable

User: 280/340
10. Injection: SetWinEventHook Vulnerable
11. Injection: SetWindowsHookEx Vulnerable
21. InfoSend: DNS Test Vulnerable
23. Impersonation: ExplorerAsParent Vulnerable
24. Impersonation: DDE Vulnerable
25. Impersonation: Coat Vulnerable

User at low integrity level: 300/340
10. Injection: SetWinEventHook   Vulnerable
11. Injection: SetWindowsHookEx   Vulnerable
21. InfoSend: DNS Test   Vulnerable
23. Impersonation: ExplorerAsParent Vulnerable
Ubuntu 17.10 | Chrome 63β | HTTPS Everywhere | Privacy Badger
Forum Policy | Comodo Product Help

Online windstorm

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 3630
Re: COMODO Leak Test Suite Updated Version
« Reply #151 on: June 30, 2017, 02:54:51 AM »
I'm getting 340/340 on W7, x64.  :)

Offline JoWa

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 5278
  • I believe in doubt.
    • Evolutionary history of life
Re: COMODO Leak Test Suite Updated Version
« Reply #152 on: June 30, 2017, 03:13:53 AM »
Want to share your recipe?
Ubuntu 17.10 | Chrome 63β | HTTPS Everywhere | Privacy Badger
Forum Policy | Comodo Product Help

Online windstorm

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 3630
Re: COMODO Leak Test Suite Updated Version
« Reply #153 on: June 30, 2017, 04:58:32 AM »
You should allow only process execution. Depending on allowed action, you might not get same alert at a later point. In other words, you should only let explorer.exe launch clt.exe. Afterwards, you block everything.

Auto-Containment: Disabled
HIPS: Safe Mode
« Last Edit: June 30, 2017, 05:18:10 AM by windstorm »

Offline JoWa

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 5278
  • I believe in doubt.
    • Evolutionary history of life
Re: COMODO Leak Test Suite Updated Version
« Reply #154 on: June 30, 2017, 05:17:44 AM »
So your recipe was W7 + CIS. Mine was W7 without third-party security software.
Ubuntu 17.10 | Chrome 63β | HTTPS Everywhere | Privacy Badger
Forum Policy | Comodo Product Help

Online windstorm

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 3630
Re: COMODO Leak Test Suite Updated Version
« Reply #155 on: June 30, 2017, 05:20:47 AM »
Oh.. misunderstood. Thought you were having trouble with your CIS configuration. Sorry about that.

Offline JoWa

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 5278
  • I believe in doubt.
    • Evolutionary history of life
Re: COMODO Leak Test Suite Updated Version
« Reply #156 on: June 30, 2017, 01:23:26 PM »
No trouble here, just testing stuff on my VMs. Thanks anyway for the help.

BTW, years ago, I got 310 on Windows XP without third-party software, by using run as “Protect my computer and my files…”.
Ubuntu 17.10 | Chrome 63β | HTTPS Everywhere | Privacy Badger
Forum Policy | Comodo Product Help

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek