CrystalAEP – Anti-Exploit Protection Tool

CrystalAEP is designed to provide frontline protection against Internet-borne threats such as viruses and malware. Unlike the typical anti-virus program, Crystal does not attempt to recognise threats based on signatures, and does not require constant updating to protect against the latest threats. Crystal works instead by manipulating at-risk software while it runs to help form an environment which is hostile to Internet worms, malware and other types of malicious code.

Anti-virus software is generally designed to protect users from well known threats which have been analysed in a laboratory, and for which signatures have been released by the anti-virus company. This means that a typical anti-virus will not be particularly effective at blocking novel threats which have not been examined by the company’s researchers, so no matter how fast the anti-virus company is in detecting the threat after it is discovered in the wild thousands of users will have already been successfully attacked by the time protective signatures are released.

As CrystalAEP does not require signatures to be effective, instead seeking to undermine the launch mechanisms employed by malicious code to install itself on a user’s system, Crystal can be effective against the most novel threats right from day one. 


The idea behind CrystalAEP was first conceived by the author in late 2006 at the time that the infamous Windows Metafile exploit was being exploited all over the Internet. The Metafile exploit leveraged a flaw in the way that Windows handled certain types of images which provided malware developers with a means of running their malicious software on an unwitting user’s system. The Metafile flaw was at the time being used to install malware, spyware and adware.
Crystal Anti Exploitation Protection Tool

CrystalAEP does not verify downloaded files or email attachments against a list of recognised viruses. Instead Crystal scuppers the ability of drive-by download attacks to succeed. It does this by altering the behaviour of the most at risk software programs (such as the email client and the web browser) to introduce checks at key points at which malicious software can be installed or observed in the first stages of execution, and preventing it preemptively from succeeding. 

Crystal is freeware for personal and business use. The software creates a minimal install footprint and can be removed at any time with ease.


Note: If you want to learn more about Linux and Windows based Penetration testing, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.
Ehacking Staff
With more than 50 global partners, we are proud to count the world’s leading cybersecurity training provider. EH Academy is the brainchild of Ehacking, which has been involved in the field of training since the past Five years and continues to help in creating professional IT experts.

Most Popular

Top 10 things to Do After Installing Kali Linux

Kali Linux is considered to be one of the best hacking distribution of this era, it is developed by Offensive Security to give an...

Become a spy in your own right with Xnspy Android spying app

Having become widely popular among parents and employers, spying apps have become quite the norm nowadays. Android spying apps have made it a lot...

e-Services Portals Potentially Expose Government Infrastructure to File-based Attacks

More and more users are embracing technology to perform their day-to-day activities. It’s not only private businesses that are forced to establish digital channels...

What is Nmap? How to use Nmap for Information Gathering

Nmap stands for Network Mapper, a powerful network scanning and host detection tool that is being used to perform reconnaissance in a very first...