Malwarebytes Anti -Exploit


  1. Posts : 109
    Win 10 Pro 64x 1809
       #1

    Malwarebytes Anti -Exploit


    At the moment I'm using Bitdefender anti virus and Malwarebytes anti malware. Would it be advantageous to install the above program. I'm not sure I fully understand what this program is trying to do. I have read the description on their web site but I must admit it's a bit over my head. As far as I'm aware I've never come across this anti exploit thing before.

    It's no big deal, but if someone can explain the advantage of installing this program I would be grateful.
      My Computers


  2. Posts : 2,935
    Windows 10 Home x64
       #2

    I have it installed. It's like an extra layer of security for zero-day exploits protecting your browser and its addons. I haven't noticed any adverse effects and it takes up little space/memory.
      My Computer


  3. Posts : 5,442
    Windows 11 Home
       #3

    no1yak said:
    I'm not sure I fully understand what this program is trying to do.
    It just another anti-app people are supposed to buy to make them more money.
    But if you are interesting, what it does, check this out: HitmanPro.Alert - SurfRight
      My Computer


  4. Posts : 27,162
    Win11 Pro, Win10 Pro N, Win10 Home, Windows 8.1 Pro, Ubuntu
       #4

    TairikuOkami said:
    It just another anti-app people are supposed to buy to make them more money.
    But if you are interesting, what it does, check this out: HitmanPro.Alert - SurfRight
    Not true the free version is sufficient. Latest Version Malwarebytes Anti Exploit

    A simple explanation would be, it works like Microsofts EMET, but better, and with an easier to use "Set It & Forget It" user interface. If you go to a website that is compromised with bad code that injects malware, this sees it and blocks it.

    What does Malwarebytes Anti-Exploit (MBAE) do exactly?
    MBAE provides advanced security that combats the problem of exploit attacks against software vulnerabilities by effectively "shielding" popular applications and browsers. Why is this important? Mainly because organized cyber criminals have moved from simple infection techniques used by old viruses and worms to using sophisticated vulnerability exploit attacks to compromise victims without requiring any user interaction (i.e., users get infected by simply visiting a webpage or opening a PDF file).
    What is an exploit?
    From Wikipedia: “An exploit is a piece of software, a chunk of data, or sequence of commands that takes advantage of a bug, glitch, or vulnerability in order to cause unintended or unanticipated behavior to occur on computer software, hardware, or something electronic (usually computerized).”

    There are typically three stages involved in a typical vulnerability exploit attack:

    1. The exploit triggers a vulnerability through which the attacker is able to run shellcode to bypass the Operating System built-in protections such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR).
    2. The exploit shellcode then runs some special instructions called payload.
    3. The payload in turn executes a malicious action. Examples of malicious actions can be "download this EXE from the Internet and execute it" or other more advanced types of actions such as opening a reverse shell to the attacker without any EXE files involved. There have been some very stealth malicious actions in the past such as in the example of the FBI exploit of the Tor Browser Bundle in 2013 where the payload simply executed a call-back packet to the FBI's servers which included the exploited PC's Mac address, the Windows hostname and some other basic personally identifiable information.

    Traditional antivirus and endpoint security solutions deal mostly with the payload's malicious action when there is an EXE involved. But the protection from exploits offered by traditional solutions starts taking a dive when the payload is something more advanced and/or in earlier stages of the exploit attack.
    both answers from pbust a moderator at Malwarebytes Forums.
    For more Q&A: https://forums.malwarebytes.org/inde...s/#entry846342
      My Computers


  5. Posts : 109
    Win 10 Pro 64x 1809
    Thread Starter
       #5

    TairikuOkami said:
    It just another anti-app people are supposed to buy to make them more money.
    But if you are interesting, what it does, check this out: HitmanPro.Alert - SurfRight
    Thanks eLPuSHer ,TairikuOkami and Cliffs for the info. Don't think I'll bother with the free version, I'll give the paid one a try as it's only £20 for the year.
      My Computers


  6. Posts : 5,442
    Windows 11 Home
       #6

    Cliff S said:
    Not true the free version is sufficient.
    That is the whole idea, a free version is always sufficient, but paid one is better.

    I am kind of allergic about all those pointless anti-apps. Most of exploits use VBS or powershell, not needed by average users, just get rid of those and you will get 100% protection for free without any effort.
      My Computer


  7. Posts : 824
    Win10/64 Pro 1511 (and 2 Win 7/64 Ult & Pro systems)
       #7

    Hello:

    Briefly, MBAM (and other anti-malware and anti-virus apps) protect against the "what" of malware, while MBAE protects against the "how" of malware.
    Exploits are the most common delivery vector of malware infection these days.
    It is designed to provide complementary protection for internet-facing applications, alongside heuristics- and signature-based AV and standard anti-malware applications, neither of which specifically targets exploits.
    MBAE does not rely on signatures, but rather on plugging the security holes in vulnerable applications.

    More information here:
    Frequently Asked Questions
    Exploits: How they work and how to crush them

    MBAE Free shields browsers, browser add-ons and Java, and may be sufficient for many users.
    MBAE Premium shields many other vulnerable applications and can be customized to shield other applications, as well, and with customizable levels of protection.

    Hope this helps,
    MM
      My Computer


  8. Posts : 824
    Win10/64 Pro 1511 (and 2 Win 7/64 Ult & Pro systems)
       #8

    TairikuOkami said:
    That is the whole idea, a free version is always sufficient, but paid one is better.
    The Free version shields browsers, browser add-ons and Java.
    The Premium version can be customized to shield email clients, productivity applications and pretty much any other program.

    TairikuOkami said:
    <snip>Most of exploits use VBS or powershell, not needed by average users, just get rid of those and you will get 100% protection for free without any effort.
    I'm not sure most basic home computer users would know how to get rid of VBS or powershell?? <just saying>:)

    Thanks,

    MM
      My Computer


  9. Posts : 149
    Windows 10 Pro x64
       #9

    TairikuOkami said:
    It just another anti-app people are supposed to buy to make them more money.
    But if you are interesting, what it does, check this out: HitmanPro.Alert - SurfRight
    HMP Alert is also subscription based, and very minimal in free mode compared to MBAE
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 07:46.
Find Us




Windows 10 Forums