Friday, 3 July 2015

Researcher: Companies Must Use Microsoft EMET

Companies can by installing the Microsoft Enhanced Mitigation Experience Toolkit (EMET) make it more difficult for attackers to gain access to systems and networks. That says researcher Grant Willcox . He decided to look for his thesis on the effectiveness of EMET 5.1.

EMET is a free tool from Microsoft that makes it harder for attackers to use both known and unknown vulnerabilities in applications. Wilcox decided to modify three exploits to see if he could bypass the security of EMET this. With one operates succeeded the researcher. But he had made ​​the assumption that it was possible to bypass all three exploits EMET. Since this was not successful as the late Wilcox see the effectiveness of the security tool.


The researcher says that on the basis of the results it is recommended that companies EMET 5.1 or later use, since it is a "very effective solution" is to prevent attackers use common problems within programs. "It probably will not prevent a determined attacker will use exploits to gain access to the corporate network, but it will put less determined attacker and force them to use alternative solutions."

Companies that choose to roll must be used within the recommended profile of EMET EMET. EMET has different profiles for programs to help determine the level of security. By performing tests can then be examined or higher levels of security are possible without crashing programs. "Although the security of EMET is not waterproof, it raises the bar quite to attack programs," concludes Wilcox.

No comments:

Post a Comment