In my ongoing fight against local attackers, I’ve got problems keeping Glasswire up and running for anything that resembles an extended time period.
What has happened twice so far is this; Glasswire running. I check “Ask To Connect” and check every single program by verifying it’s location and signature (if the signature isn’t in properties, I use a powershell command that responds with ‘verified’ or not).
A few weeks ago, I noticed the Glasswire icon in the tray was blank. I opened GW and couldn’t connect with or without VPN connected. I unistalled GW (wiped it all), reinstalled and it was OK. For a week. The same thing happened again.
This is a relatively new install of Windows 11 Pro on a custom built PC. I use the VirusTotal API key. I’ve got Bitdefender and Bitdefender VPN. I’m currently using Bitdefender’s firewall instead of GW. I recently added NoThanksVirus OS shield (or whatever it’s called). I suspect there’s is (or has been) some kind of MITM, ARP/DNS poisoning on my PC but I can’t prove it. I’m sure who the attackers are and that they’ve used deauth attacks on my wifi (which I only need to access my router and run cams) which unfortunately is WPA2 for 2.4GHz and hard passwords both on the router and and wifi (5GHz seems OK but I notice missing videos from my cams).
I know there are “exploits” that are supposed to be able to bypass firewalls. Exactly how susceptible is Glasswire to these exploits? Even with a VPN, antivirus and firewall?