i took a test for SFTP/SCP file transmission. but i can't see anything in our logs. i knew SSH decryption, i tried. but no use. i dont know how to understand SSH decryption( no threat checking for SSH tunnel), actully i dont have SSH tunnel.
and Antivirus' docoders , since decoders dont have SFTP coding scheme.
wht i have in mind is there are tens of thousands of encoding/decoding schemes . some of them are public opened , others are private. it is too hard for a firewall to include most of schemes , then to block malware via a specific encoding.
that means endpoint sulution is very very mandatary to have
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The Live Community thanks you for your participation!