Jump to content

Amaroq_Starwind

Members
  • Content Count

    328
  • Joined

  • Last visited

Everything posted by Amaroq_Starwind

  1. Amaroq_Starwind

    Option: Always Force Desktop Site

    Far too many websites try to force the mobile version onto me, even when I use the Request Desktop Site button. A lot of mobile websites are actually completely broken, and even on a phone, the desktop sites are often far more functional. If it were somehow possible to force specific websites to always give me the desktop version (without me having to click the button every time I visit), that would be awesome.
  2. Amaroq_Starwind

    Option: Always Force Desktop Site

    Some third-party browsers allow it... I'm sure that Apple would eventually make it part of Safari if enough people requested it though.
  3. Amaroq_Starwind

    Real time threat map

    I want a Malwarebytes Screensaver that includes a real-time threat map.
  4. Amaroq_Starwind

    Option: Always Force Desktop Site

    Not really possible on iOS...
  5. Amaroq_Starwind

    Miscellaneous Windows Registry Talk

    My imagination is betraying me lately, it seems. It's not coming up with original ideas anymore, only stuff people are already doing 😢 Maybe registry auditing could eventually become part of Malwarebytes though, best-case scenario.
  6. Amaroq_Starwind

    Miscellaneous Windows Registry Talk

    I wish there was a background process that would audit every change made to the registry by specific processes, users, etc... That way it would be easier to uninstall programs cleanly, remove adware, rollback from tweaks gone awry, recover from corrupted registry files, etc. Something like that might have other benefits too!
  7. Amaroq_Starwind

    Machine Learning Compilers

    So, I've been doing some personal research regarding Machine Learning, and I came across some interesting stuff... Blog: https://chriscummins.cc/2017/deep-learning-in-compilers/ <-- at the time of this writing, currrently a False Positive on MBAM web protection Academic Paper: https://arxiv.org/pdf/1805.03441.pdf Academic Paper: https://arxiv.org/pdf/1801.04405.pdf Blog: http://jayconrod.com/posts/94/machine-learning-and-compiler-optimization Quora Post: https://www.quora.com/What-changes-can-be-brought-in-compilers-if-we-include-machine-learning-deep-learning-algorithms What applications could you think of for using Machine Learning in a compiler? I can easily imagine using Machine Learning to automatically debug code for compatibility issues, security vulnerabilities, and other miscellaneous bugs... it would be interesting to see what other things it could be used for.
  8. Amaroq_Starwind

    Machine Learning Compilers

    To amend this post, it's worth noting that not all types of Machine Learning are suitable for all applications, and many have their upsides and downsides. However, combining different types of Machine Learning could have its own benefits. Here is some further reading, for those who are new to Machine Learning. Even I learned quite a bit today! https://towardsdatascience.com/types-of-machine-learning-algorithms-you-should-know-953a08248861 https://www.digitalvidya.com/blog/types-of-machine-learning/ https://en.wikipedia.org/wiki/Machine_learning For those of you who are more deeply familiar with it however, especially the Malwarebytes team, definitely share your thoughts.
  9. Amaroq_Starwind

    Miscellaneous Windows Registry Talk

    Okay, another bit of registry talk... Does anyone know of any good third-party registry editors?
  10. Amaroq_Starwind

    Miscellaneous Windows Registry Talk

    Oh, and on that note... SInce QWORDs can still be used on 32-bit Windows, provided you're running at least WIndows XP, there really isn't any reason I can think of that you shouldn't use them.
  11. Amaroq_Starwind

    Miscellaneous Windows Registry Talk

    If you gave me enough time, I could probably think of a use, such as storing a seed for a random number generator as just one example.
  12. Amaroq_Starwind

    malwarebytes Rescue Disk

    You can't update a Windows installation that's not running, even with an online rescue disc? Aw man...
  13. Amaroq_Starwind

    malwarebytes Rescue Disk

    Ah... Well, godspeed then. I hope you guys figure something out. In the meantime though, here's another tool that would probably be helpful to include on a hypothetical Rescue Disc, in the event that one eventually can get made... it could also probably be bundled with future versions of the Malwarebytes TechBench, @AlexSmith: Windows Update Manager (open-source) by David Xanatos. https://github.com/DavidXanatos/wumgr/ https://www.thewindowsclub.com/wumgr-free-and-open-source-update-manager-for-windows-10/ https://piunikaweb.com/2018/09/20/windows-update-manager-wumgr-windows-10/ Very handy because it not only allows you to block unwanted updates (and automatic updates) on Windows 10, but it also helps you install those stubborn updates that just don't want to install correctly, even on earlier versions of Windows. Not to mention, it can even access the Windows Update servers if they're blocked by a firewall, by way of built-in proxies and the like (or at least, I think that's how i t works). If you were to use the open-source .NET Core stuff, instead of the traditional .NET framework, then you could even work around corrupted or out-of-date .NET framework installations, again, especially on older versions of Windows. (Plus, for Wine users, you could potentially even get around Windows Update blocks.)
  14. Amaroq_Starwind

    Using current beta alongside MBAM 3 Premium?

    But it doesn't take that much longer, only a few minutes at worst on every machine I've used it on.
  15. Amaroq_Starwind

    Using current beta alongside MBAM 3 Premium?

    In what way does it impede?
  16. Amaroq_Starwind

    Using current beta alongside MBAM 3 Premium?

    I admit, it would be nice if the Scan for Rootkits option in Malwarebytes 3 was enabled by default.
  17. Amaroq_Starwind

    Could Malwarebytes run on Windows 95?

    This is probably a very niche case, and probably wouldn't have any practical use besides idle experimentation, but... Does Malwarebytes rely on anything (such as specific Win32 API calls or the .NET Framework) that isn't present on Windows 95? If so, then what would it take to get it working? If not, could the hardware of the time actually handle MBAM? I'm asking all of this for purely hypothetical reasons, hence why this is in General Chat. I don't actually have any present need for this, nor do I know anyone who does.
  18. Amaroq_Starwind

    More configurationoptions for Advanced Web Protection

    The first thing is a VPN-based blocklist. Using the normal Web Protection feature to block websites will only protect Safari, but the Advanced Web Protection uses a "VPN" that connects you to your local host to filter out a list of blocked addresses and such on all web browsers. Malwarebyts, unfortunately, does not host an actual VPN. McAfee and Fyde both do the exact same thing as Malwarebytes in this regard. Not routing Safari through the Malwarebytes "VPN" on the other hand, is simply because the Advanced Web Protection is redundant when you're already using Safari, because the "VPN" doesn't offer any additional protection that's not already available to Safari. As for VirusTotal, SmartScreen, etc... those are not implemented yet. Everything else on the other hand, I mainly just want more options to configure everything,
  19. I had an interesting idea: What about protecting Malwarebytes components, through an experimental extension to the Chameleon system, using all of the same tricks that Malware itself often uses for self-defense, plus a few more I thought of myself? Packers, multiple forms of obfuscation, dummy processes and registry keys, code virtualization (using a Cryptographically-secure Pseudo-RNG), dynamic recompilation, active boobytraps, maze-like FileSystem/Registry setup, modular/cross-OS component installation, Isolated/Encrypted "Mini-Pagefiles", the works. You could also go a step further in reliability by using the .NET Core runtimes instead of the traditional .NET framework, in order to prevent damaged or out-of-date .NET framework components on your system from being an obstacle to the program functioning correctly, and you could probably also use cloud-accelerated machine learning to perform extensive low-level optimizations of the compiled code. Maybe peer-to-peer cloud integrations should be implemented too (as an in-house, online-backed equivalent to Windows Resource Protection), as well as a secure and low-profile means for all of these protection systems, decoy processes, and such to communicate with eachother without revealing their identities to outside programs (hard-coded asymmetric encryption, for example), that way they will know what to do whenever it's time to update, uninstall, perform a repair, change settings (as requested by the user), and so forth. And then of course, there's the idea of a built-in (and heavily encrypted) counterpart to the HOSTS file for reaching official Malwarebytes servers/services, along with internally enforcing the use of IPv6, DNSSEC, HTTP/3, and/or a combination VPN/Proxy on any connections directly between the Malwarebytes servers and MBAM components. When taken all together, this could mitigate tampering, reverse-engineering, targeted attacks, and so on. And who knows? Maybe this could even prevent a second coming of the IOBit incident... Any thoughts on this? If so, then please share them below. 🦊 P.S.: If you want more details on what I mean by a maze-like setup with the FileSystem and Registry, then just send me a private message. My precise concept is still extremely work-in-progress, and highly confidential, but it does involve mixing back-up components with decoy files, along with some additional boobytraps of my own design.
  20. Amaroq_Starwind

    Hypothetical Chameleon extension: Protecting against fire with fire

    The fact that the full Chameleon system hasn't been updated to 3.x actually concerns me a little bit, even if the need for it is seemingly absent. The fact it's out of date can still potentially cause trouble when it actually matters. I still feel like there could be a lot of room for improvement though.. there's always ways you can make your defense systems more robust, sneakier, and smarter, and on the other side of the coin, there's always an unknown threat that's gonna try to outsmart you in some fashion. At the bare minimum, it would be interesting if you had managed to capture samples of Malware and developed Chameleon processes that spoofed their process names and the like, or even spoofed process names of things that would likely be monitored by spyware such as Steam, Discord, Chrome, etc... And I think using packers, encryption and other forms of obfuscation on Chameleon processes would be another helpful layer of security. So, I hope that you guys at least consider my input here. Chameleon should at the very least be maintained more regularly.
  21. Amaroq_Starwind

    malwarebytes Rescue Disk

    Okay, update: According to Wikipedia, the Windows Preinstallation Environment actually Freeware now. https://en.wikipedia.org/wiki/Windows_Preinstallation_Environment You can probably try to obtain it via the Windows Assessment and Deployment Kit (which I used to get Windows Configuration Designer, as the MS Store continually failed to correctly install it), and/or the Shared Source Initiative (allowing you to get some access to the source code). https://en.wikipedia.org/wiki/Windows_Assessment_and_Deployment_Kit https://en.wikipedia.org/wiki/Shared_Source_Initiative There are derivatives too, such as the WinRE and Microsoft DaRT.
  22. Amaroq_Starwind

    malwarebytes Rescue Disk

    WinPE? Crap! I am guessing that's something that can't easily be reverse-engineered? I might be able to find a workaround, hold on while I get back to you on that.
  23. Amaroq_Starwind

    Windows 10, version 1809 released

    There's a helpful utility on the Windows Store called WIndows Update Manager, which can not only prevent update errors, but also has workarounds to issues that can prevent successfully updating. Unfortunately though, the program hasn't been updated in years and has a tendency to crash if you try to run it in the background, and it also only runs on x64. When my father first configured my laptop before I usurped it, he had mistakenly installed Windows 10 32-Bit, and that's what I've been stuck with since then... I might switch to 64-Bit once I upgrade the this thing to use an SSD; the 160 gigabyte Hard Disk it currently uses is horrifically antiquated.
  24. Amaroq_Starwind

    Open-Source CPUs... MBAM on a chip?

    Here, have a YouTube: Could this mean we'll eventually end up seeing Motherboards, SSDs, or even CPUs with MBAM built right in?
  25. Amaroq_Starwind

    Open-Source CPUs... MBAM on a chip?

    I think you'd need a lot more than just Malwarebytes Web Filtering to protect a router. You'd want to modify all of the Malwarebytes protection components to run on a lightweight Linux distro, in order to prevent Malware from getting onto the router through over means. Maybe also giving it things like Memory Encryption (with DAWG-based protection), ECC memory, and a variation of that HP SureStart stuff (except implemented in a way that still allows firmware updates through some means). Now if the router had automatic software updates (not firmware, just software) for its protection components and the like, you'd probably end up with one of the most secure routers ever made.
×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.