1 - Block execution of applications received from a network share
Execution of executables from a network share is blocked to prevent installation of malicious files from a non-legitimate source:
This type of execution is protected by default blocking with the "Execution Hardening" application:
2 - Exceptions
To add exceptions and authorize the execution of applications you deem legitimate from an authorized share, follow the steps below:
1) Create an object:
- Enter the name of the object, then mention Share in Device,
- Then enter the beginning of the share path with a star at the end (if you want to authorize all applications in this path):
2) Create an application:
The application contains a rule that manages binary execution from a network share, and asks the machine learning model to perform an analysis before installation.
3)Offline option:
Check the Offline box if you want to proceed with installation without analysis if the agent is offline, otherwise installation will be blocked until analysis.
4) Quarantine:
Check the Quarantine box to send the file to quarantine if it is detected as malicious by the intelligence artificial model.
5) Erase :
Check the Erase box to delete the file if it is detected as malicious by by the intelligence artificial model.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article