Search Operator Enhancement for Traps ESM (Endpoint Security Manager) v4.2.4

Community Team Member

Read about the new features added to the Traps: Search Operator Enhancement for Traps ESM (Endpoint Security Manager) v4.2.4. Also find some helpful links to Traps technical documentation that can guide you through implementation. Got Questions? Get Answers on Live Community! 

 

Today's blog will be very short to highlight a new feature for Traps ESM (Endpoint Security Manager) v4.2.4.

 

New/Enhanced Features:

  • Search Operator Enhancement: You can now use the Starts with operator to return matches that begin with a specific string value. You can use the new Starts with operator to narrow results for SHA256 hashes, endpoint host names, and file names.

 

 

 

Condition Operators Description

Endpoint

  • is
  • is in list
  • is not in list
  • isn't
  • starts with
Name of the endpoint, or list of endpoints separated by new lines
File Name
  • is
  • is in list
  • is not in list
  • isn't
  • contains
  • starts with
Full or partial filename(Microsoft Office files containingmacros, executable files, Mach-object (Mach-o) files, or DLLs), or list of filenames separated by new lines

SHA256

  • is
  • is in list
  • is not in list
  • isn't
  • starts with
Full or partial hash value, or list of hash values separated by new lines

 

 

Check out the following Traps ESM pages:

Traps Endpoint Security Manager Release Notes

Traps ESM Administrator's Guide

 

Learn more about Traps: Traps Advanced Endpoint Protection

 

Cheers!

-Kiwi

 
Ask Questions Get Answers Join the Live Community
Labels