![[Image: abY9ktf.png]](https://i.imgur.com/abY9ktf.png)
We at Geeks For Your Information are very pleased to announce our
OSArmor PERSONAL + SysHardener PERSONAL Christmas 2023 Giveaway!
OSArmor PERSONAL + SysHardener PERSONAL Christmas 2023 Giveaway!
![[Image: VTXzrFu.gif]](https://i.imgur.com/VTXzrFu.gif)
We would like to thank NoVirusThanks™ Company Srl for sponsoring us the giveaway prizes
![[Image: ZGjV29H.gif]](https://i.imgur.com/ZGjV29H.gif)
Overview
OSArmor is a Windows OS "smart security" application that monitor and block suspicious processes behaviors to prevent infections by malware, ransomware, and other threats. This tool analyzes parent processes and prevents, for example, MS Word from running cmd.exe or powershell.exe. It prevents ransomware from deleting shadow copies of files via vssadmin.exe, blocks processes with double file extensions (i.e invoice.pdf.exe), blocks USB-spreading malware, and much more. It is lightweight, requires zero user input and protects your system while running in the background. In combination with OSArmor you can also use SysHardener to harden even more Windows OS settings.
![[Image: PQsC3an.gif]](https://i.imgur.com/PQsC3an.gif)
Even in it's default settings the user gains a good additional layer of defense and most malware delivery methods are blocked: VBS/JS/VBE/WSF scripts, MS Word/Excel/PowerPoint/etc.. exploit payloads, COM/PIF processes, and much more. OSArmor drastically reduces the possibility of getting infected by ransomware, malware and other pests that spread via emails, scripts, maldocs, etc.. OSArmor also provides "Advanced options" so the user (recommended for experts) can increase the protection layer he desires.
Watch OSArmor in action
How to Install OSArmor in Windows PC
![[Image: noq4Ojv.gif]](https://i.imgur.com/noq4Ojv.gif)
![[Image: FQifaIX.gif]](https://i.imgur.com/FQifaIX.gif)
![[Image: 2FJzKWE.gif]](https://i.imgur.com/2FJzKWE.gif)
An Additional Layer of Defense
OSArmor focuses on preventing malware infections by applying smart and intelligent rules that block malicious processes behavior. This tool can block threats not detected by your installed security solution. It will defend the user's system and prevent infections by malware and ransomware! Beginners don't have to configure anything, as mentioned, even at default settings, the user gains a good additional protection needed! Just OSArmor and forget about it. OSArmor has more than 250 smart policies to improve the user's system security with this security application.
![[Image: mVZLksd.gif]](https://i.imgur.com/mVZLksd.gif)
OSArmor provides:
- Basic Anti-Exploit
Analyze parent processes and child processes blocking exploit payloads.
- Protect MS Office Applications
Prevent WINWORD.EXE or EXCEL.EXE from executing malicious processes.
- Monitor Applications
Monitor Adobe PDF Reader, MS Office, OpenOffice, Web Browsers, etc..
- Block USB Malware
Prevent execution of processes started via autorun.inf from USB devices.
- Block Command-Lines
Block processes with command-line strings commonly related to malware.
- Protect Shadow Copies
Block system processes vssadmin.exe, etc.. from deleting shadow copies of files.
- Block File Download
Block specific command-lines related to download of remote files.
- Block .COM & .PIF
Block execution of processes with .COM or .PIF obsolete file extensions.
- Filter System Processes
Block wscript.exe, mshta.exe, etc. if they match our rules of bad behaviors.
- Block Bcedit.exe
Prevent important and critical system modifications from Bcedit.exe
- Block Schtasks.exe
Block the execution of schtasks.exe commonly used by malware.
- Block Bitsadmin.exe
Prevent Bitsadmin.exe from downloading /download remote files.
- PowerShell Rules
Block execution of encoded or malformed commands via PowerShell.
- Svchost & Explorer
Block suspicious behaviors related to Svchost.exe and Explorer.exe.
- Block RegisterXLL()
Prevent calling of Application.Excel RegisterXLL via command-line.
- Block Remote Scripts
Prevent Regsvr32.exe or Mshta.exe from loading remote scripts.
- Intelligent Rules
Our internal smart rules can block known and not-yet-known suspicious process activities.
- Very Lightweight
The software application uses only a few MBs of memory, you will not even notice it.
More Info on OSArmor Features HERE
How to Activate OSArmor with your License Key
Custom Block Rules
With OSArmor you can write custom block rules to block specific processes behaviors. By using simple variables like %PROCESS% you can match many process fields, including process, parent process, command-line, signer, MD5 hash, process integrity, and much more. This allows you to create complex and smart rules to block new malicious processes (LOLBins, etc.) or processes you don't want to allow in your system.
More Info on Custom Block Rules HERE
How to Create Custom Block Rules in OSArmor
Note: Custom block images are from previous versions -- block functions are similar.
![[Image: Y3hCq07.gif]](https://i.imgur.com/Y3hCq07.gif)
![[Image: udmvBLA.gif]](https://i.imgur.com/udmvBLA.gif)
![[Image: HbNibh1.gif]](https://i.imgur.com/HbNibh1.gif)
![[Image: xqX1e0R.gif]](https://i.imgur.com/xqX1e0R.gif)
![[Image: rssZZPO.gif]](https://i.imgur.com/rssZZPO.gif)
Exclusion Rules
With OSArmor you can write exclusion rules to allow a blocked process to run. By using simple variables like %PROCESS% you can match many process fields, including process, parent process, command-line, signer, MD5 hash, process integrity, and much more. This allows you to create smart exclusion rules to safely allow a process behavior that is blocked by OSArmor. Match multiple fields (e.g: process and signer) to create safe rules.
Note: Exclusions images are from previous versions -- exclusions functions are similar.
![[Image: yojJ3Ni.gif]](https://i.imgur.com/yojJ3Ni.gif)
![[Image: dniJOwA.gif]](https://i.imgur.com/dniJOwA.gif)
More Info on Exclusion Rules HERE
Latest Build is OSArmor v1.9.1.0 (10-Dec-2023)
Changelog [10-Dec-2023] v1.9.1.0
- Fixed all reported false positives
- Added more signers to Trusted Vendors list
- Added "Reset Stats" button on "Blocked Processes" section
- Improved parsing of Custom Blocks and Exclusions rules
- Improved retrieval of signer from a digitally signed process
- Improved internal rules to detect suspicious behaviors
- Minor improvements
Changelog HERE
![[Image: szzAH83.png]](https://i.imgur.com/szzAH83.png)
More Info about OSArmor Pricing HERE
PERTINENT LINKS
OSArmor Home Page HERE
OSArmor Features HERE
OSArmor FAQ HERE
Download OSArmor HERE
NoVirusThanks Blog HERE
OSArmor Features HERE
OSArmor FAQ HERE
Download OSArmor HERE
NoVirusThanks Blog HERE
PERTINENT YOUTUBE VIDEOS
How to Deactivate the License from a Device
How to Completely Uninstall OSArmor
How to Block Cmd.exe and Powershell.exe
How to Create Custom Block Rules in OSArmor
Block WPS Office Exploit Payloads with OSArmor
How to Configure Win Update Stop to Manage a Fleet of Devices
Testing OSArmor with Magniber (JS, JSE, WSF, CPL, MSI samples)
Testing OSArmor with Magniber, Maldocs, Qbot, IceID, Bumblebee
Testing OSArmor with MSDT "Follina" Vulnerability
![[Image: QvgmqPK.gif]](https://i.imgur.com/QvgmqPK.gif)
Overview
Harden Windows Settings with SysHardener
SysHardener is a Windows OS security application that allows any user to harden Windows settings to mitigate cybersecurity threats. With this tool the user can restrict functionalities of Windows and secure vulnerable applications (i.e Office and Adobe Reader). He, (the user) can unassociate VBS, VBE, JS, ISO, IMG, MSI, CHM file type associations, disable Macros and ActiveX on Office, disable unused Windows Services, block outbound connections of specific programs via Windows Firewall, and much more.
Mitigate Cybersecurity Threats
SysHardener hardens the Windows OS to reduce the attack surface by disabling functionalities not required. Ransomware are known to spread via email as malicious attachments, that include ISO, IMG, VBS, JS, JSE, WSF. With SysHardener program you can unassociate these (uncommon) file types so when your employee opens a file named invoice.js, it will fail to open. He, (the user) can mitigate Microsoft Office exploits by disabling Macros, OLE and ActiveX as well as disable Windows Script Host (wscript.exe) so JS, VBE, VBS, WSH scripts will fail to execute. SysHardener has included some smart Windows Firewall rules to block outbound connections of commonly abused system processes such as powershell.exe, certutil.exe and curl.exe.
![[Image: 55AsOyf.gif]](https://i.imgur.com/55AsOyf.gif)
FEATURES
- Windows Security Tweaks
With this program you can enable some Windows security tweaks useful to harden the OS settings, such as disable of autoplay for USB devices, show hidden files and file extensions, enable SmartScreen, remove MS-MSDT protocol, enable LSA protection and Svchost.exe mitigation options.
- Improve Windows Privacy
You can find some important tweaks to improve privacy of Windows OS by disabling specific Windows settings that may be used to transmit data of your PC usage to Microsoft or third-party providers. Useful to disable the automatic installation of Windows apps like Candy Crush.
- Unassociate File Types
A strong windows hardening rule is to unassociate all file types that can be used in first stages of an attack, such as VBS, JS, HTA, PIF, SCR, WSF, WSH, and the more recent ISO, IMG, VHD, MSI. So if an user receives a .ISO attachment and double-clicks on it, nothing will happen.
- Disable Windows Services
You should disable Windows services that you don't use to reduce the attack surface, thus we added options to disable some Windows services like Geolocation, User Experience and Telemetry, Remote Registry, Program Compatibility Assistant, Windows Media Player Network.
- Windows Firewall Rules
We added some important Windows Firewall rules to block outbound connections of commonly abused system processes (such as powershell.exe, certutil.exe, curl.exe, bitsadmin.exe). We also added firewall rules for .NET Framework executables and Office applications.
- Uninstall Windows Apps
We added options to uninstall default Windows Apps such as Microsoft News, Weather, Move & TV, Cortana, Windows Store, Maps, Sticky Notes, Feedback Hub, Windows Terminal, Solitaire Collection, People, 3D Viewer.
- Command-Line Usage
You can apply or restore tweaks using command-line parameters such as /ApplySelected {path-to-INI-file} and /RestoreSelected {path-to-INI-file} to automate the hardening of multiple Windows PCs. If you append the param /Reboot the PC will be rebooted once done.
- Simple Configuration
The program is simple to use, just select the tweaks and click the button "Apply Selected" to apply selected tweaks, or "Restore Selected" to factory-restore selected tweaks. Right click on an item to view additional options, you can easily apply a single tweak with "Apply This".
- Windows 10 & 11
The application works on Windows 10 (32-bit & 64-bit) and Windows 11 (64-bit). Support for older OS like Windows 7 SP1, Windows 8, Windows 8.1 is partial since some tweaks may not be available on these older OSs.
![[Image: CVuGlEl.gif]](https://i.imgur.com/CVuGlEl.gif)
![[Image: 4N5nKbF.gif]](https://i.imgur.com/4N5nKbF.gif)
SysHardener provides:
- Harden Windows OS
Disable unnecessary Windows functionalities and secure vulnerable applications.
- One-Click Solution
One-Click Solution
Recommended tweaks for Home users are checked by default, just click Apply Selected button.
- Restore Defaults
Restore Defaults
Something doesn't work? Easily restore default (factory-settings) values of selected tweaks.
- Unassociate File Types
Unassociate uncommon and commonly abused file types of JS, JSE, VBS, VBE, WSH, WSF, PIF, SCR, BAT, CMD.
- Vulnerable Applications
Restrict functionalities of Microsoft Office apps like Word, Excel, Powerpoint and of Adobe Reader.
- Windows Firewall
Windows Firewall rules to block outbound connections of commonly abused processes.
- Mitigate Online Threats
With all these system hardening tweaks you can mitigate cybersecurity threats and reduce the attack surface.
- Command-line Params
Command-line Params
You can apply or restore tweaks via the /ApplySelected or /RestoreSelected command-line params.
- No Spyware/Adware
The program is completely free from spyware, adware or other pests, nothing extra is installed.
![[Image: HRBCI2e.gif]](https://i.imgur.com/HRBCI2e.gif)
![[Image: ovr1KWP.gif]](https://i.imgur.com/ovr1KWP.gif)
Latest Build is SysHardener v2.7.0.0 — (20-Dec-2023)
SysHardener v2.7.0 - [20-Dec-2023] - v2.7.0.0
Changes
- Fixed Uninstall OneDrive
Changelog HERE
![[Image: iT9mVAB.png]](https://i.imgur.com/iT9mVAB.png)
SysHardener Pricing HERE
PERTINENT LINKS
OSArmor PERSONAL / SysHardener PERSONAL licenses for this giveaway/contest
NoVirusThanks™ Company Srl., has provided Geeks For Your Information Forum five (5 x 1-year) licenses EACH of OSArmor PERSONAL and SysHardener PERSONAL as Christmas 2023 contest prizes!
CONTEST RULES
Everyone can join in this contest including approved "new members" .
Note: 'new members' must have posted in the "Introduction" section HERE and authored at least 2 thread to qualify (excluding the "Introduction" section").
Note: 'new members' must have posted in the "Introduction" section HERE and authored at least 2 thread to qualify (excluding the "Introduction" section").
1. Please answer the question below.
"Share feedback to NoVirusThanks™ Company Srl., about OSArmor/SysHardener and why do you want to win a license of both security applications?"
Post your reply as contest entry WITH your social media share. Please see sample entry below.
![[Image: y4d1bOB.png]](https://i.imgur.com/y4d1bOB.png)
2. REQUIRED: Please share this giveaway by pasting the quoted text below in your Facebook/Twitter/Google+ Account.
(Share is NOT limited to popular social media sites like Facebook, Twitter, Google+, and Instagram.)
Quote:Geeks For Your Information Forum [Official] OSArmor PERSONAL + SysHardener PERSONAL Christmas 2023 Giveaway
https://www.geeks.fyi/showthread.php?tid=19469
Optional (but greatly appreciated) : Kindly like/follow NoVirusThanks' social networking sites as added support.
3. One entry per IP address ONLY. WE WILL BE CHECKING!
Only one entry per member is allowed (unless otherwise specified). Unauthorized entries/share links will be deleted and user will be banned from giveaway. Kindly remember that our sponsors/representatives are always checking the giveaway threads. So please be careful.
If there are any questions / concerns pertaining to the giveaway/contest please get in touch with me through PM. Do not post it in this thread. Doing so will merit a warning and ultimately be banned from entering further giveaway/contests.
WINNERS WILL RECEIVE
Each of the five (5) winners will get 1-year license of OSArmor PERSONAL and SysHardener PERSONAL
Winners will be selected by NoVirusThanks™ Company Srl., Representative and once posted,
winners will only have 5 days to send a PM to claim their prize.
winners will only have 5 days to send a PM to claim their prize.
Please include your details (Name / Email) in your PM claim for proper licensing.
NO CONFIRMATION FOR THOSE WITH INSUFFICIENT/INCOMPLETE DETAILS.
Prize will be FORFEIT if a PM claim is not received within the specified timeframe.
Prize will be FORFEIT if a PM claim is "not confirmed".
The Giveaway will run
from December 11, 2023 to January 8, 2024
from December 11, 2023 to January 8, 2024
MERRY CHRISTMAS and a HAPPY NEW YEAR to all!!!
![[Image: BS1DJMN.gif]](https://i.imgur.com/BS1DJMN.gif)
![[-]](https://www.geeks.fyi/images/collapse.png)
![[Image: SdrX0n3.png]](https://i.imgur.com/SdrX0n3.png)
