Zero-Day Protection Guide

This page includes articles, reviews and product links for "zero-day protection", "non-signature anti-malware products" and "host [based] intrusion prevention systems" or HIPS for short.

Anti-malware (virus, trojan, worm, spyware, spam, phishing...) software is only as effective as its most recent update because it is inherently reactive treating "known" threats. So when you install anti-malware software, go to the vendor's web site and update the program and its definitions immediately and then turn on the auto update feature (if it has one). If you want to be ready for the next big bad thing before your signatures can be updated, consider adding a product like one of those listed below.

Articles

• AVG Buys Sana's Behavior-Based Security Tech, Neil Rubenking, PC Magazine, January 13, 2009
• How Microsoft missed the boat on zero-day threats, Byron Acohido and Jon Swartz, ComputerWorld, May 26, 2008
• HIPS vs Behavior Blocking: Which One is Right for You? Mary Landesman, antivirus.about.com, May 14, 2008
• Zero-Day Attacks Trend Down? I Don't Give A Flying Hoot, George Hulme, Information Week, February 13, 2008

Comparative Reviews

• Sandbox Security Versus the Evil Web and Two Tenacious Exploits Debunk Vendor Claims, Roger Grimes, Infoworld, PC World, September 30, 2008 -- ZoneAlarm Forcefield, Sandboxie, Prevx, Authentium's SafeCentral, and DefenseWall HIPS.
• Best Free Intrusion Prevention and Detection Utility for Home Use (HIPS), Jeffery, TechSupportAlert, April 8, 2008

Freeware (or free for personal use)

• eEye Blink, Pro version starts at $59
• GentleSecurity GeSWall, Pro version $30 EUR
• PC Tools ThreatFire [formerly Novatix CyberHawk]
  • ThreatFire 4.5, Neil Rubenking, PC Magazine, May 22, 2009
  • PC Tools ThreatFire Review, Mary Landesman, antivirus.about.com, May 20, 2008
  • PC Tools ThreatFire 3.5, Erik Larkin, PC World, May 12, 2008
• PrivacyWare Dynamic Security Agent
• ProcessGuard, free version limited, Pro version $30
• Sandboxie, free, $25 for extra features
  • Sandboxie: Blocking Web-Based Malware From Your PC, Michael Horowitz, eSecurityPlanet, October 5, 2009
  • Transient storage offers extra protection [Sandboxie}, Craig Crossman, McClatchy-Tribune News Service, Seattle Times, June 11, 2007

Payware

• BufferZone Pro, 30 day free trial, $30
• DefenseWall HIPS, SoftSphere Technologies, $29
• Virtual Sandbox version 2.0, FGC, $50
• Kaspersky Internet Security Suite, $70, see reviews on our Internet security suites page
• Norton AntiBot, $30 for 3 PCs for one year. Note: Based on SanaSecurity's Primary Response SafeConnect, see below.
  • Norton AntiBot, Neil Rubenking, PC Magazine, August 9, 2007
  • Bots, Botnets, and Norton AntiBot, Mary Landesman, antivirus.about.com, July 22, 2007
• Online Armor, $40 US, free 30 day trial
• PC Tools ThreatFire Pro [formerly Cyberhawk, Novatix]
• PrevX, ongoing detection is free, for cleaning feature must purchase
  • Prevx 3.0, Neil Rubenking, PC Magazine, May 11, 2009 -- editor's choice for antispyware
• Primary Response SafeConnect, SanaSecurity, $25, free 15 day trial, special version is compatible with Norton Antivirus
  • Primary Response SafeConnect 2.1, Neil Rubenking, PC Magazine, 12-12-06
• ProSecurity
  • Rated excellent at Matousec.com April 2008
• Safe'n'Sec Personal, Safensoft, $21, free 30 day trial
• ShadowSurfer, $30, free 30 day trial
• System Safety Monitor
  • System Safety Monitor, Mary Landesman, antivirus.about.com, February 2, 2008
• ZoneAlarm ForceField
  • ZoneAlarm ForceField Complicates Browser Security, Andrew Garcia, eWeek, July 29, 2008
  • ZoneAlarm's Forcefield Boosts PC Security, Larry Magid, CBS News, June 2, 2008
  • Check Point Releases ZoneAlarm ForceField, Neil Rubenking, PC Magazine, May 12, 2008