Microsoft’s EMET is a powerful computer security tool that’s available for free download off Microsoft’s Tech Center site (
technet.microsoft.com/en-us/security/jj653751 ). You can even install it on Windows XP for better security. Here’s how you use EMET to secure your computer once you install it.
You can secure selected processes
Rather than lock your entire system down with EMET, it often makes sense to just keep a few vulnerable programs under its watch — browsers, Skype, Google Hangouts and other programs that get on the Internet, for instance. You could have less disruption to your system when EMET doesn’t check everything.
To secure a specific program, you should first turn it on and then look for its process under Running Processes on the EMET interface. When you find it, you can right-click on it and click on Configure Process . This should open the Application Configuration Interface window, with the program that you’ve picked highlighted. You’ll find several columns with checkboxes selected by default. When a box has a check mark in it, it means that it is under EMET ‘s watch and is restricted in some way. You can try using your program to see if problems turn up. If there’s a hitch, you can come back to the Application Configuration Interface and try removing a few checkmarks.
How do you know when EMET finds something wrong?
When a program under EMET’s watch breaks a rule or does something that it considers risky, its default action is to shut it down. You get a notification pop-up that asks you if you want to send information to Microsoft about the issue. You get to change the shutdown policy, though.
Changing EMET’s policy
By default, EMET runs in Stop on Exploit mode – programs are shut down when there’s a security issue. Whatever programs you have EMET watching for you, you may not be comfortable with the idea of having them shut down at any point. This is the kind of need that EMET includes an Audit Only mode for. You turn it on by clicking the Audit Only radio button on the ribbon interface at the top of the Application Configuration Interface window, in the Default Action section. In this mode, EMET won’t shut down the program when it breaks a rule. It will just tell you.
You get to save your settings
When you have your EMET installation configured with just the approvals that you need, you can use the Export button the far left on the ribbon interface on the main window and save your settings. You can then use your saved settings on any other PC. For most users, though, no tweaking will be necessary. The default settings that EMET comes with, should work fine.