I've built a custom IPS policy to block Aurora exploit and I've used Metasploit's IE_Aurora module to attack my virtual machine and guess what, SEP blocked the attack. Attached you'll have the policy file and a screenshot. Please Import, test and report any problems/comments.
The attached files are:
1. SEP custom IPS policy
2. Metasploit's IE_Aurora exploit VS SEP demo
00:01:19
Hello,
Thanks for sharing this information.