Avira Premium Security Suite in Firewall Challenge

使用Matousec新的測試程式對Avira Security Suite做了一個檢驗
除了BSODhook表現不如預期外,其它部分的測試與前幾個版本沒有太大的差別
AntiLeak以及自我保護能力還有很大的進步空間,同類型的產品中明顯好過ESS 3.0


測試的組件版本
[img]http://farm4.static.flickr.com/3131/2362927557_504460cf78_o.png[/img]

AntiLeak成功阻止的情形-Coat
[img]http://farm3.static.flickr.com/2135/2362927543_90abb340ff_o.png[/img]


AntiLeak成功阻止的情形-Echotest
[img]http://farm3.static.flickr.com/2420/2362927545_1c0faaf372_o.png[/img]


自我保護測試失敗情形-Kill1
[img]http://farm3.static.flickr.com/2414/2362927551_5ed30c60b9_o.png[/img]


自我保護測試失敗情形-Kill2
[img]http://farm4.static.flickr.com/3148/2362927553_cef8666bc2_o.png[/img]


自我保護成功情形-Thermite
[img]http://farm3.static.flickr.com/2257/2362927555_9f087315f3_o.png[/img]



詳細測試結果如下：
[size=6][b]Product score:[color=Red]15%[/color] Level reached:[color=Red]2[/color][/b][/size]

* [color=SeaGreen][b]Level 1 –Score 67%[/b][/color]
[color=SeaGreen]Breakout2[/color], [color=SeaGreen]Coat[/color], [color=SeaGreen]ECHOtest[/color], [color=SeaGreen]Kill1[/color], [color=Red]Kill2[/color], [color=SeaGreen]Leaktest[/color], [color=Red]Tooleaky[/color], [color=Red]Wallbreaker1[/color], [color=SeaGreen]Yalta[/color]

* [color=Red][b]Level 2 – Score 33%[/b][/color]
[color=Red]AWFT1, DNStest, Ghost, Jumper[/color], [color=SeaGreen]Kill3[/color], [color=SeaGreen]Kill3b[/color], [color=SeaGreen]Kill6,[/color] [color=Red]Wallbreaker3[/color], [color=Red]Wallbreaker4[/color]

* [color=SeaGreen][b]Level 3 – Score 67%[/b][/color]
[color=SeaGreen]AWFT3, AWFT4[/color], [color=Red]DNStester[/color], [color=SeaGreen]Kill3f, Kill4, Kill7[/color], [color=Red]SSS2[/color], [color=Red]Suspend1[/color], [color=SeaGreen]Thermite[/color]

* [color=SeaGreen][b]Level 4 – Score 63%[/b][/color]
[color=SeaGreen]CopyCat, CPIL[/color], [color=Red]CPILSuite1[/color], [color=Red]Kill3e[/color], [color=SeaGreen]Kill8[/color], [color=SeaGreen]Kill9,[/color] [color=Red]SSS[/color], [color=SeaGreen]Suspend2[/color]

* [color=Red][b]Level 5 – Score 13%[/b][/color]
[color=Red]Breakout1[/color], [color=Red]CPILSuite2[/color], [color=Red]Crash1[/color], [color=Red]Crash2[/color], [color=SeaGreen]Crash3[/color], [color=Red]Kill3c[/color], [color=Red]Kill3d,[/color] [color=Red]VBStest[/color]

* [color=Red][b]Level 6 – Score 26%[/b][/color]
[color=Red]CPILSuite3, DDEtest[/color], [color=SeaGreen]ECHOtest2[/color], [color=Red]FireHole, Flank[/color], [color=Red]Kill10[/color], [color=SeaGreen]Kill11[/color], [color=Red]Runner[/color]

* [color=Red][b]Level 7 – Score 0%[/b][/color]
[color=Red]BITStest[/color], [color=Red]OSfwbypass, Runner2, Schedtest[/color], [color=Red]SSS3[/color]

* [color=Red][b]Level 8 – Score 0[/b][/color]
[color=Red]Kill5[/color], [color=Red]NewClass, Schedtest2, SSS4[/color]

* [color=Gray][b]Level 9 – Driver Verifier[/b][/color]

* [color=Red][b]Level 10 – Score 60%[/b][/color]
[color=Red]BSODhook[/color]



Level 10 BsodHook測試詳細結果：
[quote]下午 02:57:03: Driver loaded.
下午 02:57:03: BSODs disabled.
下午 02:57:04: Hook found: NtCreateThread
下午 02:57:04: Hook found: NtOpenProcess
下午 02:57:04: Hook found: NtOpenThread
下午 02:57:04: Hook found: NtTerminateProcess
下午 02:57:04: Hook found: NtWriteVirtualMemory
下午 02:57:07: Probing 5 function(s) started.
下午 02:57:07: Probing function NtCreateThread(DDODDDDD) ...
下午 03:02:11: Function NtCreateThread passed the tests.
下午 03:02:11: Probing function NtOpenProcess(DDOD) ...
下午 03:02:36: NtOpenProcess(0xAD331CD0, 0xBE4D48EF, 0x07E653DE, 0xF55F0C07) [color=Red][b]caused BSOD![/b][/color]
下午 03:02:36: Probing function NtOpenThread(DDOD) ...
下午 03:02:36: NtOpenThread(0xAD331CD0, 0xBE4D48EF, OBJECT_ATTRIBUTES.ObjectName=0x07E653DE, 0xF55F0C07) [color=Red][b]caused BSOD![/b][/color]
下午 03:02:36: Probing function NtTerminateProcess(PD) ...
下午 03:03:35: Function NtTerminateProcess passed the tests.
下午 03:03:35: Probing function NtWriteVirtualMemory(PDDDB) ...
下午 03:05:35: Function NtWriteVirtualMemory passed the tests.
下午 03:05:35: Probing complete.[/quote]