Microsoft Mitigation Experience Toolkit (EMET) 5.0 has been in Technical Preview since February of this year, with a promise that it would ship (RTM) during the 2nd half of 2014. Today, Microsoft is announcing the general availability of EMET 5.0.
Since February, and despite its beta status, EMET 5.0 has been promoted as a cure to various zero-day vulnerabilities exposed in the last several months. Rarely will Microsoft (or any other vendor) suggest that a beta product be used to solve major problems, let alone mitigate security disclosures. But, EMET 5.0 has been developed from the beginning with attention to the modern security landscape.
EMET 5.0 brings improvements over previous versions, but also introduces new features and concepts. EMET 5.0 brings:
- Increased compatibility with third-party software so more security mitigations (such as Deep Hooks) can be turned on by default.
- Newly hardened data driven bypasses to help prevent attackers from modifying EMET’s data structures during attacks.
- New user interface options that allow customers to configure how each mitigation applies to applications in their own environment.
- Two features first revealed in EMET 5.0 Technical Preview: Attack Surface Reduction and EAF+.
Microsoft provides EMET for free and is available for download from the EMET resource page: http://technet.microsoft.com/en-us/security/jj653751
EMET is intended to be used to anticipate known and common techniques of exploits and then harden systems so that attacks are diverted, terminated, and blocked.