Enhanced Mitigation Experience Toolkit
| Enhanced Mitigation Experience Toolkit | |
|---|---|
| Basic data
|
|
| developer | Microsoft |
| Publishing year | 2009 |
| Current version | 5.52 (November 14, 2016) |
| operating system | Windows |
| category | Security software |
| License | Proprietary |
| German speaking | No |
| Others | End of support on July 31, 2018. |
| EMET homepage | |
Enhanced Mitigation Experience Toolkit ( EMET ) was security software from Microsoft for Windows systems.
EMET could be installed in addition to a firewall or an anti-virus program to protect against (unknown) attacks by malware ( exploits ) . EMET made it difficult for attackers to exploit security gaps in software, in particular Windows services, Windows apps, Microsoft Office, outdated software and third-party software such as Adobe Reader , Adobe Flash Player , various browsers, Java , Skype or VLC Media Player .
Anyone could download and install the program as freeware . A graphic interface was used to configure the safety functions. A wizard made the configuration easier. System administrators were the primary target group for EMET .
EMET used security mitigation technologies such as Data Execution Prevention (DEP), Structured Exception Handling Overwrite Protection (SEHOP), Address Space Layout Randomization (ASLR), Export Address Table Filtering (EAF), EAF +, Certificate Trust ( pinning ) and blocking of not Trustworthy fonts (called Block Untrusted Fonts at EMET Fonts ).
All Windows versions from Windows Vista with Service Pack 2 and installed Microsoft .NET Framework 4.5 were supported. Older versions like EMET 4.1 could also be used under Windows XP with .NET Framework 4.0. Those versions lacked the SEHOP or ASLR functions. This.
In November 2016, Microsoft announced the end of support for EMET for July 31, 2018. Since EMET was published in 2009, substantial improvements have been made to the browser and operating system kernel. Windows 10 received many features and technologies from EMET. According to Microsoft, this made it unnecessary to install EMET on Windows 10 devices. According to Carnegie Mellon University , Microsoft Windows 10 does not yet offer all functions in November 2016 to completely replace EMET. Among other things, the functions EAF, EAF +, pinning and fonts were missing.
With the “Fall Creators Update” in October 2017, EMET capabilities were integrated into Windows 10's “Windows Defender Exploit Guard”. In addition, for the Windows Enterprise variant with the "Windows Defender Application Guard" an extended protection of browsers and with the "Windows Defender Device Guard" a standardized application control is available. All three security tools are part of the licensed Windows Defender Advanced Threat Protection (ATP) service.
Web links
- Official EMET homepage
- How to configure Microsoft EMET for protection from hacking and zero-day flaws in Windows XP, Vista, 7, 8, 8.1 and 10 (English)
- TechNet: Windows 10 and Windows Server 2016 - ProcessMitigations Module (successor to EMET in Windows 10; English)
Individual evidence
- ^ The Enhanced Mitigation Experience Toolkit. Microsoft support. In: support.microsoft.com. Retrieved April 29, 2016 .
- ↑ Quickly Secure Your Computer With Microsoft's Enhanced Mitigation Experience Toolkit (EMET). In: www.howtogeek.com. Retrieved April 29, 2016 .
- ^ Moving Beyond EMET . In: Security Research & Defense . ( microsoft.com [accessed November 21, 2016]).
- ↑ Will Dormann: Windows 10 Cannot Protect Insecure Applications Like EMET Can. The Software Engineering Institute (Carnegie Mellon University), accessed November 21, 2016 .
- ↑ Kurt Mackie: Microsoft Resurrecting EMET for Windows 10 Fall Creators Update. In: rcpmag.com. June 29, 2017, accessed August 1, 2017 .
- ↑ Rob Lefferts: Announcing end-to-end security features in Windows 10. Microsoft, June 27, 2017, accessed on August 1, 2017 (English).
- ↑ Avi Sagiv: What's new in Windows Defender ATP Fall Creators Update. Microsoft, June 27, 2017, accessed August 1, 2017 .