Windows 8 With EMET Is Surprisingly Stable

I’m using Microsoft Windows 8 and I have been since just a few days after the official release. Naturally EMET (click here for more info) is one of the first programs I install on any Windows OS and with ATI now supporting ASLR with the 12.7 and up drivers I’ve set my system to the maximum settings for all categories.

Image

Essentially the three major exploit mitigation techniques, DEP, ASLR, and SEHOP, are forced on all executables on the system. The default setting for both DEP and ASLR is Opt-In, which isn’t very secure (though all new programs ship with DEP at this point due to compiler default flags) so by ignoring program settings and forcing these techniques system wide EMET makes the system more secure.

The downside is potential compatibility issues. So far I’ve only had issues with CCleaner’s installer, which does not like ASLR, although CCleaner itself does work fine with ASLR enabled.

Anyone looking to really secure a Windows system against attack should consider setting EMET up this way. To see how to enable ASLR to Always On via EMET just click here.

Remember, to get the full benefit of EMET you should also make use of the per-application settings, which will enforce multiple techniques other than DEP, SEHOP, and ASLR. And if you don’t mind Metro you should consider moving to Windows 8 as it has significantly improved ASLR.

5 thoughts on “Windows 8 With EMET Is Surprisingly Stable

  1. Hello Insanity Bit!

    I upgraded from Vista to Windows 8 pro this weekend, and I’m not able to directly install EMET. I’m getting a message that I need to install .Net Framework version 2 before I can proceed. Is this right. Version 2 seems a bit dated to me.

    Would you happen to have any thoughts on the matter? You helped me tighten up the security in my old Windows Vista OS a few weeks ago; and now I’d like to tighten the security of this new OS I just purchased.

    Isn’t version 2 too dated for me to download, when .Net Framework is up to version 3.5 right now?

    Any bits of your computer insanity and wisdom are always welcomed here!

    Thanks in advance.

    perknh

      • Thank you, Insanitybit.

        As you instructed me, I went to the site and Microsoft recommended this:
        Microsoft .NET Framework 4 Client Profile (Web Installer)

        (The Microsoft .NET Framework 4 web installer package downloads and installs the .NET Framework components required to run on the target machine architecture and OS. An Internet connection is required during the installation. The Client Profile is used to run most client applications that target the .NET Framework 4.
        868 KB)

        Now my new question is: should I go for 3.5 or make the leap to 4?

        Any thoughts on the matter?

        Thank you,

        perknh

        • Windows 7 and Windows 8 should come with .NET 4.0 already. But .NET 4.0 won’t give you what you need, so you’ll have to install .NET 3.5. They will install side by side, so you don’t have to choose between them, you can have both.

  2. What great help! I’ve got EMET running now. As I had with Vista, audiodg remains blue. But what a relief to know we’ve now got added protection against zero-day attacks!

    Thank you so much, Insanitybit, for all the help and insights.

    perknh

Leave a Reply

Your email address will not be published. Required fields are marked *