[56chan4]

Community version is 30day old or behind the paid version. Problem with alot of IDS/IPS is it needs to see the contents of the packets before it can block, unless it breaks the encryption its not going to work. So its not a panacea but then nothing is, and its hard to tell if this is already provided by AV products with web browser addons. If you take Kaspersky, they are the only AV product which uses CPU virtualisation to scan for malware running in memory on a windows box for their Safe Money web browser facility. CPU virtualisation is one of those areas that can bypass alot of security products, so if you can stack up enough zero days to get into an OS and mod a bios, you can hide for a long time. Single core CPU's also have their uses as well, but you dont see that mentioned much either in the security arena.