New version of Hitman Pro Alert must exploit vulnerability more difficult




The new version of Hitman Pro Alert, which comes out next week, to make security problems harmless. The software would offer better protection than similar Microsoft software, EMET, and must also protect XP users.

Hitman Pro Alert 3 will be announced next week at the RSA Conference, let Mark Loman of Hengelo developer SurfRight know. “The new version does to exploit mitigation. Means that we notice if certain suspicious processor instructions are executed,” said Loman. “You could see it as a virus that does not require definitions.”

By installing the software, users would no longer be sufficient for exploits, though that was never to exclude vulnerable. According Loman software managed by an internal test exploits the recent zero day – Vulnerability in Internet Explorer 9, and 10 to defuse. A zero day is a security issue for which no patch for it, which generally does not recognize. Viruscanners The software is after next week free to download, but for the exploit mitigation options is a paid license. If a Hitman Pro license, can use it.

One of the techniques that the software provides is protection against return-oriented programming. In addition, the existing machine instructions of a program executed in a specific order chosen by the attacker, which he can compose his own code. Normally this should be prevented by data execution prevention, which prevents writable memory is performed by the user, and address space layout randomization, in which memory addresses are randomized to making it more difficult for attackers to refer to it.

Hitman Pro Hitman Pro Hitman Pro

A similar tool from Microsoft, the Enhanced Mitigation Experience Toolkit, which provides protection only in 32-bit, emphasizes Loman. Moreover EMET 900MB big and he leans on it. NET Framework, while the software of the Dutch no 3MB and in C + + and assembler is written.

Further checks Alert 3 complete memory on heap spraying, a technique in which attackers execute their own code. “EMET does so only for some preconfigured addresses. The rest you need to configure an attack,” said Loman. The software should also exploits for bugs in Java stop. A large part of the exploits written to abuse. Java vulnerabilities

Following an incident in which an eighteen-year-old hacker broke into computers of minors, the webcam pictures made ​​and then published, Alert 3 also features onboard gotten to warn users when their webcam is being used.

In addition, the software supports the security technology ASLR, Windows XP, it is normally not provided. This would enable government agencies and companies who can not switch to a newer version of Windows after April 8, when support for XP stops, have some degree of security.


In: Technology & Gadgets Asked By: [18412 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »