HitmanPro.Alert
|
Posts: 13,651
Threads: 9,190
Thanks Received: 8,903 in 7,059 posts
Thanks Given: 9,584
Joined: 12 September 18
20 June 22, 15:34
Quote:HitmanPro.Alert 3.8.21 Build 945 released
Changelog (compared to 943)- Improved Syscall
- Improved WipeGuard
- Improved CryptoGuard5
- Improved HollowProcess
- Improved ROP detection on crashing processes
- Improved HeapHeapHooray also covers powershell_ise now
- Changed Lockdown Added MSDT.EXE as LOLBIN to proactively block Follina exploitation attempts
- Several other changes under the hood
Download
https://dl.surfright.nl/hmpalert3b945.exe
Auto-updater is enabled as of now.
Posts: 13,651
Threads: 9,190
Thanks Received: 8,903 in 7,059 posts
Thanks Given: 9,584
Joined: 12 September 18
20 September 22, 06:02
Quote:HitmanPro.Alert 3.8.22 Build 947 released:
Changelog (compared to 945)- Improved HollowProcess
- Improved Syscall
- Improved StackPivot
- Improved RemoteThreadGuard
- Improved CryptoGuard 5
- Fixed rare BSOD's in CryptoGuard 5
- Fixed HollowProcess incompatibility with PC-Matic/Pitstop
- Several other changes under the hood
Download: https://dl.surfright.nl/hmpalert3b947.exe
Auto-updater is enabled as of now.
Posts: 13,651
Threads: 9,190
Thanks Received: 8,903 in 7,059 posts
Thanks Given: 9,584
Joined: 12 September 18
15 December 23, 10:29
(This post was last modified: 15 December 23, 10:29 by harlan4096.)
Quote:HitmanPro.Alert 3.8.25 Build 975
We're slowly releasing this new build to our current 947 stable fleet, as there have been a significant number of changes this update won't be auto-update available all at once.
Monitoring telemetry & support will give us an indication of possible issues, and if all looks good we'll migrate more users, of course you are free to download the latest version via provided link if you don't want to wait for the update to show up via the auto-updating mechanism.
Changelog:- Added HWBGuard (Silent), A technique heavily used by red-teams to bypass Syscall protections is to set a HardwareBreakPoint, we now detect these breakpoints
- Added New Process Protection panel for Risk Reduction
- Added RDPGuard Icon under Risk Reduction button
- Added SendKeyGuard
- Fixed BSOD in StickyKeys
- Fixed Driver BSOD under specific circumstances
- Fixed KernelTrap compatibility issues with Kaspersky and GenshinImpact
- Fixed Lockdown Bypass when loading files over UNC paths
- Improved AMSIGuard
- Improved APC Game detection
- Improved Bitdefender Compatibility
- Improved CiGuard
- Improved CookieGuard
- Improved CryptoGuard5
- Improved DrWeb Compatibility CallerCheck/SysCall
- Improved HeapHeapProtect Cobalt Strike detection
- Improved HeapHeapProtect prevents Powershell scripts from patching AMSI for bypass
- Improved HollowProcess
- Improved KeyboardGuard u.a. compatibility with ESET protected browsers, Windows search
- Improved Lockdown Now allows WMIC GET 'only' commands without interference
- Improved PrivGuard
- Improved StackPivot
- Removed ReflectiveDLL As it has become obsolete in it's current implementation
- Several other changes under the hood
Beware this build is signed with a new code-signing certificate by Sophos LTD, this might take some 3rd party vendors to have "trust" issues as it's a rather fresh certificate.
Download
https://dl.surfright.nl/hmpalert3b975.exe
Posts: 1,631
Threads: 400
Thanks Received: 6,353 in 1,615 posts
Thanks Given: 1,271
Joined: 14 August 18
HitmanPro.Alert 3.8.25 Build 977
Quote:Lifted from RonnieT / Sophos QA Engineer
We're slowly releasing this new build to our current 947 stable fleet, as there have been a significant number of changes this update won't be auto-update available all at once.
Monitoring telemetry & support will give us an indication of possible issues, and if all looks good we'll migrate more users, of course you are free to download the latest version via provided link if you don't want to wait for the update to show up via the auto-updating mechanism.
Changelog (compared to 975)
- Fixed HWBGuard (Silent) excessive alert reporting, now limited to max 2 alerts per process.
Download HERE
Source HERE
Posts: 13,651
Threads: 9,190
Thanks Received: 8,903 in 7,059 posts
Thanks Given: 9,584
Joined: 12 September 18
08 February 24, 09:39
Quote:HitmanPro.Alert 3.8.26 Build 979
Changelog (compared to 977)- Fixed Intruder/Safe Browsing compatibly issue introduced by a recent Bitdefender update.
- Improved HeapHeapProtect, improved handing in code and added more whitelisting options to alerts.
- Improved SendKeysGuard, switched the main thumbprint to handle whitelisting more easy.
- Improved HWBGuard (Silent).
- Improved HollowProcess/HWBGuard, to prevent exception pointer abuse.
Download
https://dl.surfright.nl/hmpalert3b979.exe
Posts: 13,651
Threads: 9,190
Thanks Received: 8,903 in 7,059 posts
Thanks Given: 9,584
Joined: 12 September 18
06 April 24, 07:47
Quote:HitmanPro.Alert 3.8.26 Build 983
Changelog (compared to 979)- Added UI - EventLog - Clear event data dialog, use right mouse click on "Last events"
- Added UI - EventLog - Show only Suppressed events
- Added UI - EventLog - Copy details to clipboard button
- Added Several code preparations for upcoming changes/additions
- Fixed Exclusions - UWP exclusions browser for Windows 11
- Fixed BSOD - CryptoGuard5
- Improved HeapHeapProtect
- Improved SoftwareRadar - No longer removes UWP Exclusions at startup
- Improved PrivGuard - Now also prints the current and expected userSID's
- Improved Kernel32Trap
- Improved SyscallX64
https://dl.surfright.nl/hmpalert3b983.exe
Auto-update will also be enabled from 979 -> 983
Note for testers this is the exact same version as 983 RC1 on the beta board.
Posts: 1,631
Threads: 400
Thanks Received: 6,353 in 1,615 posts
Thanks Given: 1,271
Joined: 14 August 18
The following 1 user says Thank You to jasonX for this post:1 user says Thank You to jasonX for this post
• harlan4096
|
Users browsing this thread: 1 Guest(s)
|
Welcome
|
You have to register before you can post on our site.
|
Birthdays
|
Today's Birthdays
|
(56)Stefanos
|
Upcoming Birthdays
|
No upcoming birthdays.
|
Online Staff
|
There are no staff members currently online. |
|
|