Most of us prefer to rely on an antivirus along with the default Windows settings to protect us from Internet security threats. While this is good enough for most of us in most times, they may not help in protecting us from zero-day vulnerabilities or new exploits – especially in Java, Flash, etc.

ExploitShield is a new tool that promises to keep the Windows computer protected from by protecting it from exploit attacks against  vulnerabilities. It will also block malicious drive-by download infections from exploit kits (Blackhole Exploit Kit, Phoenix, Incognito, Eleonore, Sakura, etc.). These type of exploit kits incorporate a variety of exploits for different vulnerable applications such as the browsers themselves, Java, Acrobat Reader, etc.

ExploitShield even blocked the latest (MSFT Advisory 2757760) zero-day vulnerability for Internet Explorer!

The free version of ExploitShield will protect Internet Explorer, Firefox, Chrome,  Opera, Java and Web Browser components like PDF, Flash, etc. For other applications like Microsoft Office, Windows Media Player, Adobe Reader, Adobe Acrobat, Foxit Reader, VLC, Winamp, QuickTime, etc., you will have to buy the Corporate version.

ExploitShield is said to be the first ever install and forget vulnerability-agnostic anti-exploit solution and you can download it from here. It works just fine on Windows 8 too!

So…do you need ExploitShield?

I did try and visit some dangerous URLs which were displayed in their table, and found that my Kaspersky had effectively blocked it, so I probably may not use it as I feel fairly secure with my KIS. If you are running a good Security Suite, you may not feel the need to install it.

But well, there is no harm in having an additional layer of security, if you feel. Moreover the tool runs in the background and does not really consume any resources.

Hat tip: Ghacks.