IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [emet]

The Enhanced Mitigation Experience Toolkit (EMET) is a utility from Microsoft that helps prevent vulnerabilities in software from being successfully exploited.

The Enhanced Mitigation Experience Toolkit (EMET) is a utility that helps prevent vulnerabilities in software from being successfully exploited. EMET achieves this goal by using security mitigation technologies. These technologies function as special protections and obstacles that an exploit author must defeat to exploit software vulnerabilities. These security mitigation technologies do not guarantee that vulnerabilities cannot be exploited. However, they work to make exploitation as difficult as possible to perform.

EMET also provides a configurable SSL/TLS certificate pinning feature that is called Certificate Trust. This feature is intended to detect (and stop, with EMET 5.0) man-in-the-middle attacks that are leveraging the public key infrastructure (PKI).

8 questions
10
votes
1 answer

What does EMET do for Windows 8.1?

I recall seeing, upon release of Windows 8 a while ago that a number of new mitigations and memory protections had been put in place but i'm unsure if these are the same protections offered by EMET. Based on the bypasses discussed it appears that…
NULLZ
  • 11,426
  • 17
  • 77
  • 111
5
votes
2 answers

Does EMET prevent WannaCry exploit execution?

Based on answers to the question How is the “WannaCry” Malware spreading (...), I understand it leverages vulnerabilities present in the SMB implementation. Assuming an unpatched and otherwise vulnerable system, would EMET (properly set-up to…
Marc.2377
  • 594
  • 3
  • 10
3
votes
1 answer

How good is EMET at protecting Windows and should I enable it for every application?

I've just found about the Enhanced Mitigation Experience Toolkit. The science behind it is beyond me, but how much protection over an antivirus does it provide? Should I enable its protection for every process or select the most used attack vectors…
Marek Andreansky
  • 161
  • 6
2
votes
1 answer

EMET and AntiVirus

I've just heard about and started playing with EMET and I am curious, do any AV or security suite applications do what EMET does or is EMET something entirely different?
Travis Thompson
  • 539
  • 1
  • 5
  • 9
2
votes
2 answers

Logging and Metrics for DEP, EMET, and Related Mitigations

Is it possible to collect metrics or generate alerts when one of EMET's suite of mitigations prevents code execution? Ideally I'd want to be able to collect and analyze data to support statements like, "deploying EMET blocked ### exploit attempts…
Matt
  • 31
  • 1
  • 4
1
vote
1 answer

EMET disable DEP on IE for specific site

I'm a new user of EMET. I wanted to know if there is anyway to avoid DEP on IE for a specific site. I want to do this because I use VMware remote server and when I start a remote console, EMET starts blocking iexplore (because of DEP attack) and the…
Diego
  • 227
  • 1
  • 5
1
vote
1 answer

Chrome + EMET= How Strong Realistic Protection Against Browser-Based Threats?

tl;dr: How secure is a combination of a sort-of hardened Google Chrome + Microsoft Enhanced Mitigation Experience Toolkit 5.1 against browser-based threats that I do not expect to be highly targeted & sophisticated? Put another way, how realistic…
mostlyinformed
  • 2,715
  • 16
  • 38
-2
votes
2 answers

Does Microsoft EMET protect against latest Hacking Team Adobe Flash 0-day exploit?

If I were to not update Adobe Flash and instead used the old version (from before the Hacking Team 0-day exploit was published in the internet), in that case, would Microsoft EMET protect me from the latest Hacking Team Adobe Flash 0-day exploit?…
vasili111
  • 207
  • 1
  • 7