There are many tools that we can use to protect our computers and thus prevent the entry of malware. We have at our disposal many antivirus that we can use in different operating systems, however there are also other varieties of software that can protect us. Today we echo AMSIext , a new extension that they have developed from ElevenPaths that allows malware to be detected directly in the memory of the browser, even before the antivirus.
AMSIext, the extension that detects malware quickly
It is interesting to have different tools beyond the antivirus to protect our systems. Sometimes we may come across threats that in one way or another can compromise our equipment, undermine our privacy and security. Immediacy, being able to detect malware in time , can avoid bigger problems.
In this sense, AMSIext can improve the time it takes for traditional antivirus. As its developers indicate, the objective is to detect what is not “playing disco”. Basically we can say that it is the moment in which they begin to analyze the antivirus. But what happens before? That’s where this extension comes in.
Fileless or fileless malware adds a bigger problem by making it difficult to detect. AMSI is a native Windows 10 system that aims to connect the information in memory with the antivirus. Hence AMSIext, this extension that is available, although still in a trial version, for Google Chrome and Mozilla Firefox browsers.
The operation of AMSIext
What AMSIext does is connect the browser to AMSI. This way it transmits all the possible scripts that pass through the browser before they reach the disk. This way you can analyze those scripts and, in case you detect any threat, stop browsing.
If it detects files or pages that have potentially dangerous extensions, such as .js, .vbs, .vb, .bat or .ws, among others, it will block that website. This way, it would not be necessary for this script to touch the disk for the traditional antivirus to detect it.
It also has a button that allows you to quickly send a script to AMSI. Once it is sent, the antivirus that we have associated is in charge of analyzing whether it is malicious or not (it will generally be Windows Defender, unless we assign another one).
In short, AMSIext is an interesting extension that is available for the main browsers such as Google Chrome and Mozilla Firefox. Their goal is to detect malicious scripts before they touch disk, so they can detect them before the antivirus. An interesting way to avoid security problems that compromise our systems.
As we have indicated at the moment they are available in trial versions. This means that they will receive improvements over time, but we can already test them. For this we have to go to the official page and download it. There two buttons will appear that we will have to choose to install it for Google Chrome or Mozilla Firefox.
