Welcome to the Endpoint discussion forum! We encourage you to ask questions, propose solutions, and collaborate on ideas to better secure your endpoints with Traps.
This board has been created to provide a location in which to ask quick questions about the Traps product, (including information about the installation or management of the Endpoint Security Manager, the Traps endpoint agent, and the associated util
...
Hi,
If one or more files are incorrectly (False Positives) moved to quarantine on multiple clients. What is the procedure for recovering these files/files on all systems? At the moment, the ESM GUI option "Restore File" only restores the file from th
...
Hi All,
A strange scenario here. It appears my Traps endpoints are no longer connecting to the ESM server because the ESM SSL certificate was due to expire and had to be renewed. It seems renewing the SSL certificate has broken the trust relationship
...
Does anybody know if Traps has protections against process doppelganging? There is a detailed write up at the link below explaining what this is.
https://hshrzd.wordpress.com/2017/12/18/process-doppelganging-a-new-way-to-impersonate-a-process/
It c
...
Is it a good practice to block executables from running from C:\Windows\Temp Folder?
Is there the chance of blocking legitamate apps trying to run ?
Hi,
I'm deploying Traps and some users have detected that Traps is stopping a document signing proccess. Java.exe and jp2launcher.exe are the affected proccess. Also both proccess are unprotected.
I also have checked the EPM rules looking for a rule
...
Hi all, I would like to know Trap can be investigated or forensic anti-spyware or malicious exploit via registry? because I have an issue with a client which it seems was a delete with malware which client can't delete yourself
Is it normal to get the "Agent License Validation Failed" notification every time a user logs out of a non-persistent VDI session? If it is notmal, then we will not notify the admins via email. Otherwise, we are on to troubleshooting.
This envionment
...
Hello,
I have tried to find some topics or KB similar to the subject but didn't find any.
We recently update our Traps server to v4.1.2.31839, and from then we are spammed with these notifications:
1st
Log Event: WildFire Communications Status Changed
T
...
Traps simulates in the first default Anti Ransomware Rule for all processes in certain directories Honeypotfiles with typical Ransomware filenames.
It looks something like this, the samething for ZZZ:
PS C:\Users\xxx\Desktop> Get-ChildItem !!!*
...
Hi!
From time to time I see that I cannont contact or download WildFire reports due to connection issues.
In addition I get a lot of these logs: Verdict Changed - No connection to Any
As far as I have been able to figure out this is a log that describes
Hi team,
I've a published ESM server running behind an F5, I'm using both internally and externally URLs for different users (internal users and roaming users). I was just wondering in case anyone knew I'm publishing the ESM Core outside and he figur
...
The most important topic these days is the processor flaw.
Microsoft already released a security update but states out that there may be compatibility issues with some anti-virus applications: https://support.microsoft.com/en-us/help/4072699/important
...
Hello,
Is it possible to sends some file uisng ESM to endpoints?
I am trying to integrate? a security solution with traps,this requires me to send few files to endppoint, so was windering is it possible to achieve this?
Hello,
we are in the process of rolling out Traps. Since our company develops its own software we would like to add our software certificates to the trusted signers so we can avoid false positives. Is this possible?
I want to import some hashes into out ESM Server to have them blocked by Traps. Which format should the input file have?
aleksandar.asta
TomYoung
on:
Paloalto ha licencing
aleksandar.asta
nikoolayy1
on:
Endpoint web filtering
| Subject | Likes |
|---|---|
| 1 Like | |
| 1 Like |
