Portmaster, simplewall, the Comodo one, my ESET antivirus comes with an interactive firewall too (you need to activate it though). Would love to see them all tested.
Hi Leo, Unfortunately tinywall dev is no longer active in the project. I hope to see a test of simplewall, which uses another type of blocking and see how effective it is. Fort firewall is very similar to simplewall, but simplewall is more widespread among users. And thanks for the easy to understand videos.
@kapa7197 You're correct, I only looked at the changelog on the tinywall website, and the last release was in March 2023. It may be the case "if it ain't broke don't fix it", but I'd still like to see other options that are more active at the moment.
switched from tinywall to Malwarebytes Windows Firewall Control back when a windows 10 update stopped tinywall from working. it's similar since it also just controls the windows firewall and gives you way better control over it. But it's missing the few features of tinywall, like protecting the hosts file and having an established list of malicious ips. on the other hand you can check every connections reputation, check files on virustotal, start whois and get info on ports...
Tinywall blocks all programs outside a small whitelist it has, so sure it blocked the stealer, but it also will block most other programs unless you manually allow them.
@@T3chN0mad advance firewalls offer many options. Normally they have something like a safe mode option, which allow all trusted verified apps to make any connection they request. Others are blocked by default or asked by pop up menu, like it's done in Comodo
I Can tell you about Eset it is good in term of light of computer Source and poor of Active defense like , after scanned finish it is bad for HIPS is fake by default,Behavior detection is good
I highly recommend anyone to give portmaster a shot, I love tinywall and used it for good bit while on windows, but its no that active of a project anymore. Portmaster is still open source and is actively maintained and developed (also works on linux)
Whenever I installed it on my Windows laptop, it would make my Wi-Fi or Ethernet connection become very unstable, very slow, and at most times just unable to connect to anything. It was very frustrating to use. Not sure if anyone has had a similar experience with it on Windows.
@@A-Fax-Machine slow in terms of response time may be caused by setting a distant, slowly responding DNS provider in its DNS list. Slowing down the overall speed is not typical. The same about unstable connection. It's either it works normally, or completely blocks because it's a firewall ) I heard there were some issues before, but nowadays Portmaster performs close to perfect, if you choose a stable version. You may have some bugs if you pick a developer version. Anyway if it won't work for you, there is a long list of alternatives )
I use ESET's firewall in interactive mode which lets you create persistent rules on the fly and also shows the file reputation on the popup and the signature etc.. Super useful. It's also possible to create a firewall rule to allow outgoing traffic only from signed executables. But I haven't created a rule like that since it may be bypassed if the malware uses a cmd child process etc. to connect.
You can change the settings in windows firewall to default block both incoming and outgoing connections, you can add rules to block all different types of IP packets like IPV6. Some malware could edit the registry or rules to auto allow their connection.
Depending on settings a stateful firewall might not help much. Inbound traffic, from an outside hack attempt for example, is blocked by default. But when there's a request from inside from some malware for example the firewall might look at the return traffic thinking you requested it and pass it.
a good stateful firewall will ask/block any outbound request from unknown, unsigned, or untrusted app. There might be problems if a malicious app calls other, fully legitimate applications, to make this outbound request. It's indeed problematic and should be dealt by a proper HIPS utility, security suits and other approaches which make hardening of the system
Interesting video. To be honest, I prefer a simple wall. It prompts you to allow internet access when an app tries to get out. It won't ask a second time unless the app gets updated. But this one might not be as effective against known domains, since it doesn't use a block list.
yep, same about PiHole and other filters based on DNS resolve. They work as long as potential threat calls DNS resolver, otherwise direct IP link will be allowed
I'm wondering if these alternative firewalls are actually better, or if Windows Defender Firewall is just not configured properly. About a year ago you showed us how to improve Windows Firewall with inbound/outbound rules using a Python script. I still use this script to download the list of malicious IPs and add it to the outbound rules of Windows Firewall. It's been working great for me and I'm sure as many other do, prefer to use the tools that come with Windows.
do you have a reason to stay with windows products, or is this just a believe that windows tools are better? you should probably start with asking (yourself) this question
@@Buzzcronym as you prefer ) My statement was not about how you call it, the key point was about reason/argument. I have for myself strong arguments NOT to use windows firewall. I don't know if you have any arguments, and if you have what are these arguments. It's OK if you don't want to discuss it, no push at all )
@@ТоварищКамрадовСоциалистКоммун Performance: Third-party firewalls can sometimes have an impact on system performance. Complexity: Third-party firewalls can be more complex to configure than the built-in Windows firewall. Cost: Many (reliable) third-party firewalls are commercial products, so you'll need to pay for a license.
What about the firewall that comes with Bitdefender? I am just wondering because I don't think the system would allow me to run two firewalls at the same time.
@@Junior-ep2hg extremely paranoid and the reason that I do not buy bitdefender after 6 trials and years and years of IT experience professionally even.
Hi, great video. I have a question. I have always used the firewall that comes with the antivirus/security program that I buy. But I have recently been thinking about if I can save some money by only buying the antivirus and use it in combination with the inbuilt windows firewall. Is Windows firewall good enough for that, or should I keep paying for and use a 3rd party firewall? For reference the security software that I am using now is Norton 360. I have used norton for 30 years or there about and I have never had any issues with it. But I am open for suggestions if it means that I can save some money. Also isn't there also a firewall built into routers as an additional layer of protection or am I mistaken about that?
Question: Do a "Safe/secure" DNS provide the same/similar service as a blocklist? I like to belive a router is a bit harder to disable, but I'm really not that certain anymore. I remember we used blocklists a decade or two ago for known bad actors, but how do you scale them to todays threaths on a local computer?
many secure DNS providers have DNS servers with additional security/content filter which are in fact some block lists. So answer in yes, they are similar in many ways
native windows firewall usually fails miserably. Even tinywall, not the most advanced 3rd party firewall for windows, is far better than standard windows utility
For the windows firewall, it asks for blocking incoming connections but it allows all outgoing connections by default, and has no direct option to make it easy to just keep "block all connections" and then prompt for every application that tries to connect in/out mode, and unlike the other firewalls the built in one is easy for anything running as administrator to exclude themselves and just allow itself through before connecting by just running one command.
From what I understand, this isn't the kind of thing CrowdSec was meant for. It's great for protecting servers, less so for an actual desktop. It's also heavily reliant on attacks you've encountered, and the lists you've subscribed to. From memory, you can only have 3 lists, as a Free user, and the bulk of the lists available are for Premium users.
I just wish there was a more traditional packet filter/stateful firewall like iptables. Windows firewall should just go back to the Precambrian era, where it belongs with other things that can't make the difference between new and related.
it woudl have been nice if you did a side by side comparison with Simplewall which is a similar project. also, I was under the impression that the free version of Glasswire was simply a visualizer for Windows Defender.
What about portmaster you mentioned it in a video a while back , I think it block some of these( didnt try info stealers) but it blocks some ads and tracking and I still use it since I saw that video
PC security channel has a video about it, published about a year ago. Not much changed since that time, this firewall is still good, and might be a good alternative to simplewall or any other firewall
"With the exception of Windows Firewall, no other firewall software should be active while TinyWall is installed. This includes standalone firewalls as well as software that provide a nicer interface to Windows Firewall. Note that being able to install two firewalls at the same time does not mean they will work together without issues." - TinyWall F.A.Q page.
This is what the FAQ says "with TinyWall there is no difference if you enable or disable Windows' built-in firewall. TinyWall will provide the same protections and functions either way, uninhibited. For completely other reasons though, it is recommended you leave Windows Firewall enabled."
It's okay for blocking connections, but it doesn't have a prompt mode like the other solutions. You are able to set it to block all outbound connections but it won't prompt you whenever something wants to connect out to give you the option to unblock them which is quite useful.
Hello, Leo! Will you or have you ever done an analysis on Malwarebytes Windows Firewall Control? Due to this platform mechanism chosing what they want to show when the user do a search, I could not confirm if you already did a video on this.
tinywall is a frontend for windows firewall with some features, portmaster is a network application with a lot of functions, including firewall, DNS settings and filters, privacy settings, and advanced version of VPN called SPN if you pay for this service
Xcitium is a new name for the company. They don't have any free/freeware products, may be just trial versions, afaik. Comodo products are still available for download in many countries (well practically everywhere if you use a three letter utility, or just ignore or block cookies). They are still freeware. Not free, freeware
Stop using your device as a TikTok box, and start using your favourite search engine; It would take less time to get the answer than type your comment. There's no such thing as a stupid question, but there sure as shi are stupid people.
Can? Sure, it has more security features than Windows 10, so I guess it's more difficult to hack (don't know how much more difficult, might just be a little). Will it if you're committed to doing stuff that can get you hacked? Probably not. Having safe behavior on Windows 10 is safer than insecure behavior on Windows 11.
"also it uses windows firewall" -> it does not. that was only the case with pre-3.0 versions of TinyWall, newer versions are independent from Windows Firewall and not just a GUI.
Even if firewall is set there are flow because once they execute they can be rootkit or anything just dont run it else it will persost and wait for moment were firewal stop
If you have the ip address of the command and control centers of these malwares, why don’t the police find out who the guys are and catch them? I thought interpol is a thing?
Short answer is NOT ALWAYS but it helps you being less of a target and helps to block many bots. But any firewall is better than no firewall. On the Mac there is a tiny firewall called little snitch, I love the way it works, it simply pops up and asks you allow once, allow always, block. I would block things and if they still worked kept them blocked, but would allow or unblock if they needed the net. On the Network I have PFSense installed on an older PC that acts as the main firewall.
Yes it can both hardware and software they can get a trojan on your system, but it isn't connecting to the internet unless you say. I used to go in yahoo chat hackers lounge with some really skilled hackers and offer them 500 bucks to steal my info. One guy very talented got a trojan on my system. Next day I wake up see it trying to connect BLOCKED lol removed, I go tell him hes like damn man I almost got ya. I gave him 20 bucks for the test.
For windows firewall, running as admin it can add its own exclusions before trying to connect out or allow connections in. With third party ones like SimpleWall it allows you to optionally avoid the windows firewall entirely and use a different technology and has no commands to manage exclusions so would require a connection out, and it to know about this program and auto click allow on it.
@@SmilerRyanYT I use simplewall but I think tinywall works the same, they are just a easy to use configurator for windows firewall they are not replacing it. So I'm thinking if simplewall can add rules to windows firewall why not malware do the same?
@@gearfriedtheswmas but what is your question about? you look for a possible attack scenario? it's possible, but not likely. If you look how to protect against it, I already described it. No admin. Admin only for maintenance. If your application or description to it states that it requires admin account, it's not a good sign )
It's probably in a virtual machine. It would of course be advisable to have a dedicated machine as well, since VM escape can happen (have heard conflicting information about how likely it is, some day VMs are safe, others say they aren't, so I say better safe than sorry if you're messing around with malware). But I don't know if that's how it's done on this channel or not.
Pretty sure it's on a virtual machine on his host PC, though if you want to be safe its best to do it on a separate pc connected to another network, so it can't even tell that it's virtualized or go anywhere else.
Hello PC Security Channel. Your videos are very good, i love them! You're the only channel that i subscribed :) I want to ask you something. Is Kaspersky's firewall strong? Or should i use another firewall? I use Kaspersky Standard as Antivirus. I wondered about that. I would be very grateful if you could answer.
those are usually included in security packs/suits. Pick any good trusted security company of your choice and you will get it ) Examples are Kaspersky, ESET, Sophos, Comodo/Xcitium, and others you name it
@@juniorsancanari even free very good sophos xg home but you would need a spare computer running 24/7 and most home users don’t and neither do they really need it. And if not configured correctly it just blocks everything.
nothing wrong. Many use them both, which is preferable for many scenarios. software firewall make a program-specific control, and hardware firewall is responsible for overall security
Paranoid users should block all traffic in firewall and manually allow connections they need
that's not a paranoid, that's just a manual control )
Not paranoid, smart.
That's the standard in the corporate world for mature companies
@@betterjesusofficial and they should not use their ISP DNS. :)
When you buy a real firewall it comes configured this way by default...
I would love a tier list of firewalls!
Some edr/mdr have built in firewalls. I want to see those too. Gravityzone etc.
Portmaster, simplewall, the Comodo one, my ESET antivirus comes with an interactive firewall too (you need to activate it though). Would love to see them all tested.
Host based or Hardware based ? If hardware based then Palo Alto and Checkpoint are top, then comes Fortigates and Watchguard
@@seansingh4421 Wish Palo Alto had a Peasant Edition for advanced home users and small businesses... I need some of that NGFW at home to play with.
we need water wall
Hi Leo,
Unfortunately tinywall dev is no longer active in the project. I hope to see a test of simplewall, which uses another type of blocking and see how effective it is. Fort firewall is very similar to simplewall, but simplewall is more widespread among users.
And thanks for the easy to understand videos.
Is he really not active? i saw 3 weeks ago updates on github. I may got confused.
As can be seen on its GitHub project, there are new changes coming up. So he's not inactive, more like in maintenance mode.
@kapa7197 You're correct, I only looked at the changelog on the tinywall website, and the last release was in March 2023. It may be the case "if it ain't broke don't fix it", but I'd still like to see other options that are more active at the moment.
@@AtomicPixel42it could also be the case the changelog is only for major updates and that the GitHub changes are more or less just maintenance updates
Just a heads up to folks reading this. There are a couple of firewalls called Simplewall. What most people want is Henry++'s Simplewall.
switched from tinywall to Malwarebytes Windows Firewall Control back when a windows 10 update stopped tinywall from working. it's similar since it also just controls the windows firewall and gives you way better control over it. But it's missing the few features of tinywall, like protecting the hosts file and having an established list of malicious ips. on the other hand you can check every connections reputation, check files on virustotal, start whois and get info on ports...
I asked so much for this, thank you ❤
Tinywall blocks all programs outside a small whitelist it has, so sure it blocked the stealer, but it also will block most other programs unless you manually allow them.
Don't all firewalls do this? I used Comodo for a while and the *bing* sound still haunts me
@@T3chN0mad advance firewalls offer many options. Normally they have something like a safe mode option, which allow all trusted verified apps to make any connection they request. Others are blocked by default or asked by pop up menu, like it's done in Comodo
@@T3chN0mad No, not all firewalls work like this.
@@Maniak2000 1.1.1.3 should not allow the malicious DNS to resolve. You could also have VirusTotal' API query the URL's.
Whitelisting new known good connections as you go according to what you need is a reasonable and responsible approach
this is one of your best videos. Clear, to the point and useful.
Please test Kaspersky and Bitdefenders Firewall in the Paid Versions. I wanna know how good they are.
Add Eset Internet Security to that list too please :)
(I use that antivirus so I would like to know how safe I am)
Up on this one I am currently using Kaspersky Premium
I Can tell you about Eset it is good in term of light of computer Source and poor of Active defense like , after scanned finish it is bad for HIPS is fake by default,Behavior detection is good
Bitdefender's Firewall is buggy, for YEARS. I have a video of it on my channel. They don't fix it
I highly recommend anyone to give portmaster a shot, I love tinywall and used it for good bit while on windows, but its no that active of a project anymore. Portmaster is still open source and is actively maintained and developed (also works on linux)
Omg yes didnt expect to see anyone else mention it!!1
Ah you said the words I was eagsr to listen. "Linux" 😂😂😂😂 cause I simply don't use Windows anymore at this point on my personal machine.
Whenever I installed it on my Windows laptop, it would make my Wi-Fi or Ethernet connection become very unstable, very slow, and at most times just unable to connect to anything. It was very frustrating to use. Not sure if anyone has had a similar experience with it on Windows.
@@A-Fax-Machine when was the last time u tried it? Or maybe you activated some weird setting?
@@A-Fax-Machine slow in terms of response time may be caused by setting a distant, slowly responding DNS provider in its DNS list. Slowing down the overall speed is not typical. The same about unstable connection. It's either it works normally, or completely blocks because it's a firewall )
I heard there were some issues before, but nowadays Portmaster performs close to perfect, if you choose a stable version. You may have some bugs if you pick a developer version. Anyway if it won't work for you, there is a long list of alternatives )
How does Portmaster stack up against Tinywall?
São canais assim que deveriam ter milhões de inscritos, parabéns por compartilhar conhecimento 👏👏 vou usar o threatlocker
As a paranoid user, I have tinywall and simplewall installed and both are set to block all traffic unless I manually allow them. both are free btw.
I use ESET's firewall in interactive mode which lets you create persistent rules on the fly and also shows the file reputation on the popup and the signature etc.. Super useful. It's also possible to create a firewall rule to allow outgoing traffic only from signed executables. But I haven't created a rule like that since it may be bypassed if the malware uses a cmd child process etc. to connect.
Nice video my friend ❤
Brilliant video! Thanks a ton 👍
You can change the settings in windows firewall to default block both incoming and outgoing connections, you can add rules to block all different types of IP packets like IPV6. Some malware could edit the registry or rules to auto allow their connection.
Depending on settings a stateful firewall might not help much. Inbound traffic, from an outside hack attempt for example, is blocked by default. But when there's a request from inside from some malware for example the firewall might look at the return traffic thinking you requested it and pass it.
a good stateful firewall will ask/block any outbound request from unknown, unsigned, or untrusted app. There might be problems if a malicious app calls other, fully legitimate applications, to make this outbound request. It's indeed problematic and should be dealt by a proper HIPS utility, security suits and other approaches which make hardening of the system
Interesting video. To be honest, I prefer a simple wall. It prompts you to allow internet access when an app tries to get out. It won't ask a second time unless the app gets updated. But this one might not be as effective against known domains, since it doesn't use a block list.
I use it. I love it.
There is also PortMaster from safing which does a alot, and also fortfirewall
Legit a excellent one
Awesome! Thank you for Sharing! 💯✴
What about NextDNS or Controld? Could they be seen as an alternative also?
No, it's just DNS and the URLs have to be in the filters. If it's connected to an IP directly they are useless
@lussor1 Thank you!
yep, same about PiHole and other filters based on DNS resolve. They work as long as potential threat calls DNS resolver, otherwise direct IP link will be allowed
I know I’m late but I like the new shield design!🎉
In the company where I work as IT I have installed in every computer Tinywall. Free, easy to setup with custom configuration and works great.
You're getting closer. Can you try defender+DNS filters vs Malware?
can you test these types of malware and info steallers on portmaster
WHY THEY DONT ACCEPT GMAIL AND OUTLOOK
can you try Fort Firewall?
Which virtual environment you use/recommend for testing malwares
I'm wondering if these alternative firewalls are actually better, or if Windows Defender Firewall is just not configured properly. About a year ago you showed us how to improve Windows Firewall with inbound/outbound rules using a Python script. I still use this script to download the list of malicious IPs and add it to the outbound rules of Windows Firewall. It's been working great for me and I'm sure as many other do, prefer to use the tools that come with Windows.
do you have a reason to stay with windows products, or is this just a believe that windows tools are better?
you should probably start with asking (yourself) this question
@@ТоварищКамрадовСоциалистКоммун As I stated, it's a preference, not a belief.
@@Buzzcronym as you prefer ) My statement was not about how you call it, the key point was about reason/argument. I have for myself strong arguments NOT to use windows firewall. I don't know if you have any arguments, and if you have what are these arguments. It's OK if you don't want to discuss it, no push at all )
@@ТоварищКамрадовСоциалистКоммун Performance: Third-party firewalls can sometimes have an impact on system performance. Complexity: Third-party firewalls can be more complex to configure than the built-in Windows firewall. Cost: Many (reliable) third-party firewalls are commercial products, so you'll need to pay for a license.
Your method probably works pretty well, so unless you want more protection, you should be fine.
What about Malwarebytes Windows Firewall Control?
That's just a frontend for Windows Firewall.
@@madness1931 Tinywall is too.
What about the firewall that comes with Bitdefender? I am just wondering because I don't think the system would allow me to run two firewalls at the same time.
@@Junior-ep2hg extremely paranoid and the reason that I do not buy bitdefender after 6 trials and years and years of IT experience professionally even.
@@joepjoep9531 Explain in plain english please
Please try the same thing on Portmaster (Safing). I want to see something.
is Glasswire or portmaster better plug and play firewalls that the kaspersky ?
Could you publish a video on what to uninstall from windows 11
thanks and regards
Nico
Run Chris Titus tool and delete bloat you won't use with BCuninstaller
When installing Windows, when you choose your region, choose "*(World)", such as "English (World)". That should install Windows without the bloat.
Hi, great video.
I have a question. I have always used the firewall that comes with the antivirus/security program that I buy. But I have recently been thinking about if I can save some money by only buying the antivirus and use it in combination with the inbuilt windows firewall.
Is Windows firewall good enough for that, or should I keep paying for and use a 3rd party firewall?
For reference the security software that I am using now is Norton 360. I have used norton for 30 years or there about and I have never had any issues with it. But I am open for suggestions if it means that I can save some money.
Also isn't there also a firewall built into routers as an additional layer of protection or am I mistaken about that?
Question: Do a "Safe/secure" DNS provide the same/similar service as a blocklist?
I like to belive a router is a bit harder to disable, but I'm really not that certain anymore.
I remember we used blocklists a decade or two ago for known bad actors, but how do you scale them to todays threaths on a local computer?
many secure DNS providers have DNS servers with additional security/content filter which are in fact some block lists. So answer in yes, they are similar in many ways
Can you try Portmaster too? I am curious of the results.
he did this about a year ago )
Spin up a VM and do it yourself
and the most important point is not even part of the video.
is the windows firewall working just as good as tinywall or does it fail to block it?
As he said it blocks some but he’s not sure if it’s just a blocklist in tiny wall or not.
native windows firewall usually fails miserably. Even tinywall, not the most advanced 3rd party firewall for windows, is far better than standard windows utility
For the windows firewall, it asks for blocking incoming connections but it allows all outgoing connections by default, and has no direct option to make it easy to just keep "block all connections" and then prompt for every application that tries to connect in/out mode, and unlike the other firewalls the built in one is easy for anything running as administrator to exclude themselves and just allow itself through before connecting by just running one command.
Where are you from?
I used Portmaster a time ago and thought its one of the best Firewalls. is it so? Or is tinywall better and lightweighter than portmaster?
Hey @pc security channel what about windows firewall with CrowdSec IPS
From what I understand, this isn't the kind of thing CrowdSec was meant for. It's great for protecting servers, less so for an actual desktop. It's also heavily reliant on attacks you've encountered, and the lists you've subscribed to. From memory, you can only have 3 lists, as a Free user, and the bulk of the lists available are for Premium users.
I just wish there was a more traditional packet filter/stateful firewall like iptables. Windows firewall should just go back to the Precambrian era, where it belongs with other things that can't make the difference between new and related.
How good is Portmaster Leo?
it woudl have been nice if you did a side by side comparison with Simplewall which is a similar project.
also, I was under the impression that the free version of Glasswire was simply a visualizer for Windows Defender.
what about comod firewall
what about opnsense, which is what I use
So, Tinywall or Portmaster which is better?
This vs safing portmaster ??
What about portmaster you mentioned it in a video a while back , I think it block some of these( didnt try info stealers) but it blocks some ads and tracking and I still use it since I saw that video
You start with what, like it's a question, then just ramble on into a statement.
@kaydog890 I want opinions on that so maybe take it just as a question "What about portmaster? "
PC security channel has a video about it, published about a year ago. Not much changed since that time, this firewall is still good, and might be a good alternative to simplewall or any other firewall
thanks ... test simplewall...
glasswire vs portmaster vs tinywall vs comodo would be a great video
You can test peerblock 😊
Can this be installed in addition to Windows firewall?
"With the exception of Windows Firewall, no other firewall software should be active while TinyWall is installed. This includes standalone firewalls as well as software that provide a nicer interface to Windows Firewall. Note that being able to install two firewalls at the same time does not mean they will work together without issues."
- TinyWall F.A.Q page.
it's in fact an advanced front page for windows firewall. So yeah it's an addition to it
Thank you @@UmitSeyhan75
This is what the FAQ says "with TinyWall there is no difference if you enable or disable Windows' built-in firewall. TinyWall will provide the same protections and functions either way, uninhibited. For completely other reasons though, it is recommended you leave Windows Firewall enabled."
@@jkbobful this indeed
Hey Leo do you have access to MSSP tools and would you want to test some? Let me know.
can you show a demo like this of SimpleWall? Thanks, I left a like on your video here
Can I install and use Tiny wall alongside Windows firewall?
Yes
How well does windows firewall do at this?
It's okay for blocking connections, but it doesn't have a prompt mode like the other solutions. You are able to set it to block all outbound connections but it won't prompt you whenever something wants to connect out to give you the option to unblock them which is quite useful.
What is the software is out of date can the tiny firewall prevent and stop from getting bypass the firewall ?
Please do on Kaspersky and windows firewall. And
Is it safe to run cloudflare tunnel ? Can someone try to attack from outside. (No port forwarding)
Tiny wall vs simple wall?
Can you please do this again with kaspersky?
VM -> do it yourself
@@kaydog890 I don't like to mess with virus, and I don't know where to find virus, I prefer a profissional to deal with it.
Hello, Leo! Will you or have you ever done an analysis on Malwarebytes Windows Firewall Control? Due to this platform mechanism chosing what they want to show when the user do a search, I could not confirm if you already did a video on this.
How tinywall compares to Portmaster?
tinywall is a frontend for windows firewall with some features, portmaster is a network application with a lot of functions, including firewall, DNS settings and filters, privacy settings, and advanced version of VPN called SPN if you pay for this service
@@ТоварищКамрадовСоциалистКоммун TinyWall is not a frontend for Windows Firewall. It is its own firewall since v3.
@@kapa7197 OK
Anyone ever try Malwarebytes Windows Firewall Control?
Can we just add those addresses to the hostfile?
Is Portmaster firewall any good?
Hey, talking about firewalls; is Comodo still a thing?
it still works )
Its no longer free that's all
Xcitium is a new name for the company. They don't have any free/freeware products, may be just trial versions, afaik.
Comodo products are still available for download in many countries (well practically everywhere if you use a three letter utility, or just ignore or block cookies). They are still freeware. Not free, freeware
Stop using your device as a TikTok box, and start using your favourite search engine; It would take less time to get the answer than type your comment.
There's no such thing as a stupid question, but there sure as shi are stupid people.
yeah it's good and still free
Can windows 11 save you from being hacked like Microsoft says?
Can? Sure, it has more security features than Windows 10, so I guess it's more difficult to hack (don't know how much more difficult, might just be a little). Will it if you're committed to doing stuff that can get you hacked? Probably not. Having safe behavior on Windows 10 is safer than insecure behavior on Windows 11.
Windows 7 Master Race
apple comptuers and ther bulit in firewalls: actly being fully smart and dimamic and asks nicely for progames to alow contections when needed.
tinywall block everything by default unless you allow it... also it uses windows firewall so it's in a sense a frontend UI for windows firewall
"also it uses windows firewall" -> it does not. that was only the case with pre-3.0 versions of TinyWall, newer versions are independent from Windows Firewall and not just a GUI.
@kapa7197
I need to check what version I'm using
Even if firewall is set there are flow because once they execute they can be rootkit or anything just dont run it else it will persost and wait for moment were firewal stop
Hey, can you say something to Portmaster? Is it Scam, is it valid? Would really appreciate it. Keep up your great work!
👍👍👍
so, accidently opened malware, still pull out the ethernet cable right away might actually help a ton???
No, lol you would be too slow.
If you have the ip address of the command and control centers of these malwares, why don’t the police find out who the guys are and catch them? I thought interpol is a thing?
Short answer is NOT ALWAYS but it helps you being less of a target and helps to block many bots.
But any firewall is better than no firewall.
On the Mac there is a tiny firewall called little snitch, I love the way it works, it simply pops up and asks you allow once, allow always, block. I would block things and if they still worked kept them blocked, but would allow or unblock if they needed the net.
On the Network I have PFSense installed on an older PC that acts as the main firewall.
Only girls and kids use Mac
Yes it can both hardware and software they can get a trojan on your system, but it isn't connecting to the internet unless you say. I used to go in yahoo chat hackers lounge with some really skilled hackers and offer them 500 bucks to steal my info. One guy very talented got a trojan on my system. Next day I wake up see it trying to connect BLOCKED lol removed, I go tell him hes like damn man I almost got ya. I gave him 20 bucks for the test.
Why don't you run tinywall against your virus script of over a hundred apps? See how it does with that automated version you have?
im using norton smart firewall part of my norton 360 delux package
Lol
Is it good? Can you run the malware sample and check?
Using Norton already nope hehe
@@mik3lang3lo it gets blocked
@@joepjoep9531 been using norton 360 since 2010 no issues atm
well that was surprising.
But what if you ran the mallware as admin? Couldn't they just add their own rules to the firewall to allow connection?
not very likely, and using admin is not a good idea. Admin for maintenance
@@ТоварищКамрадовСоциалистКоммун Not what I asked.
For windows firewall, running as admin it can add its own exclusions before trying to connect out or allow connections in.
With third party ones like SimpleWall it allows you to optionally avoid the windows firewall entirely and use a different technology and has no commands to manage exclusions so would require a connection out, and it to know about this program and auto click allow on it.
@@SmilerRyanYT I use simplewall but I think tinywall works the same, they are just a easy to use configurator for windows firewall they are not replacing it. So I'm thinking if simplewall can add rules to windows firewall why not malware do the same?
@@gearfriedtheswmas but what is your question about? you look for a possible attack scenario? it's possible, but not likely. If you look how to protect against it, I already described it. No admin. Admin only for maintenance. If your application or description to it states that it requires admin account, it's not a good sign )
Is tinywall better than windows firewall?
See link yes you can
What about portmaster
A router with pfsense?
👍
Linux?
TempleOS?
@@kaydog890 TempleOS macht frei....
firewall helps but doesn't do everything
Hi there I am running Windows 11
Tinywall killed my browser
I was not able to open it and configure it
So I uninstalled it
thanks and regards
Nico
so you uninstalled a properly working software )
It worked, but it was not configured
Please test Kaspersky's Firewall
Woulda been nice to have back when I ran windows 😂
Do you run all this malware on a dummy pc with info that’s meant to be stolen? It’s always so sketchy to see malware launch lol
sandboxes
It's probably in a virtual machine.
It would of course be advisable to have a dedicated machine as well, since VM escape can happen (have heard conflicting information about how likely it is, some day VMs are safe, others say they aren't, so I say better safe than sorry if you're messing around with malware). But I don't know if that's how it's done on this channel or not.
Pretty sure it's on a virtual machine on his host PC, though if you want to be safe its best to do it on a separate pc connected to another network, so it can't even tell that it's virtualized or go anywhere else.
Simple Wall... Far better.
yes. safing portmaster works as well
Test without blocklist and you know more maybe
Hello PC Security Channel. Your videos are very good, i love them! You're the only channel that i subscribed :) I want to ask you something. Is Kaspersky's firewall strong? Or should i use another firewall? I use Kaspersky Standard as Antivirus. I wondered about that. I would be very grateful if you could answer.
Windows firewall actualy works recentley i made an attack to the firewall and looks like it blocked it. İt didnt said anything but it realy done well.
Video on comodo firewall
Test portmaster with this same test
ok, could anyone suggest three paid firewalls that are good?
those are usually included in security packs/suits. Pick any good trusted security company of your choice and you will get it )
Examples are Kaspersky, ESET, Sophos, Comodo/Xcitium, and others you name it
@@juniorsancanari even free very good sophos xg home but you would need a spare computer running 24/7 and most home users don’t and neither do they really need it. And if not configured correctly it just blocks everything.
There's only one to consider, ESET
What's wrong with using a proper hardware Firewall? never used a software firewall in over 20yrs?
nothing wrong. Many use them both, which is preferable for many scenarios. software firewall make a program-specific control, and hardware firewall is responsible for overall security
• Fedora Silverblue