We have a legitime application which is running a script. This script and the chain is detected by traps as threat. So we would like to configure an exception for this
cmd.exe --> cscript //E:JScript //nologo "C:\ProgramData\signature\sign.bat"
So its possible to add this exception? where it can be configured?
Are you using the ESM (on premise version of Traps) or TMS (cloud based)?
With TMS, you go into your Exceptions, determine the hash
This is where I would start to see if this works.
You can also create a policy to ignore/disable the behavioral techniques
We are using ESM 4.1, how can we configure this?. We know that its EoS, we are thinking in upgrade soon.
We want to create only a exception for this expecific script not to all "cmd.exe"
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The Live Community thanks you for your participation!