The lengthily-named Enhanced Mitigation Experience Toolkit is a powerful tool that blocks many exploits and provides easy control over a number of Windows security features, including Structured Exception Handler Overwrite Protection (SEHOP), Address Space Layout Randomisation (ASLR) and Data Execution Prevention (DEP).
No more hunting for the right applet or Registry key to tweak your settings, then - here they're all available at a glance, and you can set up everything just as you'd like in seconds.
You can also configure your system with several "pseudo-mitigations", new techniques that may make it harder for even some 0-day malware to infect your PC. (These have technical names like "Heapspray allocation" and "Export Address Table Access Filtering", but you don't need to worry about the low-level details - for the most part, they just work.)
Version 5.2 brings these improvements:
- Control Flow Guard: EMET’s native DLLs have been compiled with Control Flow Guard (CFG) to help detect and stop attempts of code hijacking.
- VBScript in Attack Surface Reduction: the configuration for the Attack Surface Reduction (ASR) mitigation has been improved to stop attempts to run the VBScript extension when loaded in the Internet Explorer's Internet Zone.
- Enhanced Protected Mode/Modern IE: EMET now fully supports alerting and reporting from Modern Internet Explorer, or Desktop IE with Enhanced Protected Mode mode enabled.
The Enhanced Mitigation Experience Toolkit blocks some common exploits, and makes it easier to configure various Windows security technologies.