I’m starting this topic with the sole intention of creating a list containing any IMPORTANT HIPS/Firewall/Buffer Overflow test - i.e. one that actually matters - that CIS fails/could do better in, for the Comodo devs to look into. I’m sure there aren’t many
Mods
My apologies if there is already a thread like this, or this is not required. In that case, please delete this thread.
CIS is too overpowerd for simple malwares… it needs some kind of lab generated unrealistic super baddie where you click allow once or twice and with a code designed especially to avoid detection by D+ !
EDIT:: still a good thread Beanie, I think Clipboard logger detection is not there atm, Melih happens to know if catching this “behaivior” is in the planning maby for 3.9?
You can bypass the x64 version although real world malware most likely won’t do so.
I hope they will make a full x64 ring 0 HIPS, hopefully with 3.9 soon.
rejzor said something about that D+ doesn’t catch Virut but
he didn’t tell if he used proactive config profile (which is needed to prevent patching any executables)
I don’t share malware samples with anyone that is not a malware expert that i know or someone from an anti-malware company.
And as i said, i used default Safe Mode profile for Defense+. I haven’t changed anything else.
Guys, I really don’t want this thread to turn into an argument about ‘trolling’ or whatever…
I made this thread with the sole intention of creating a list of tests/malware etc that CIS is not incredibly strong against, so that the devs could make it incredible strong against them (not saying CIS isn’t strong, it’s one of the strongest security solutions out there ;D)