本帖最后由 驭龙 于 2014-8-5 16:19 编辑
ESET 7的一大波新技术,不是不错吗?这还不算时不时的引擎改进
Exploit Blocker
Exploit Blocker is designed to fortify often exploited application types on users’ systems, such as web browsers, PDF readers, email client or MS office components. It adds another layer of protection by using a completely different technology, compared to techniques focusing on detection of malicious files themselves...
Instead, it monitors behavior of processes and watches for suspicious activities that are typical for exploits. When triggered, the suspicious behavior is analyzed and the threat might be blocked immediately on the machine. Certain suspicious activities are processed further in our cloud systems, which gives Exploit Blocker the potential to protect users against targeted attacks and previously unknown exploits, so called zero-day attacks.
Advanced Memory Scanner
Advanced Memory Scanner couples nicely with Exploit Blocker, as it is also designed to strengthen the protection against modern malware. In an effort to evade detection, malware writers extensively use file obfuscation or/and encryption. This causes problems with unpacking and might pose a challenge to bypass for ordinary anti-malware techniques, such as emulation or heuristics. To tackle this problem, the Advanced Memory Scanner monitors the behavior of a malicious process and scans it once it decloaks in the memory. This allows for effective infection prevention even from heavily obfuscated malware.
Vulnerability Shield
Vulnerability shield is an extension of firewall and improves detection of Common Vulnerabilities and Exposures (CVE’s) on the network level.
By implementing detections for CVE’s of widely used protocols, such as SMB, RPC and RDP, it constitutes another important layer of protection against spreading malware, network-conducted attacks and exploitations of vulnerabilities for which a patch has not been released or deployed yet. |
[复制链接]
发表于 2014-8-5 15:56:04
楼主
