1 - Block execution of applications received from a network share

      Execution of executables from a network share is blocked to prevent installation of malicious files from a non-legitimate source:

This type of execution is protected by default blocking with the "Execution Hardening" application:

2 - Exceptions

To add exceptions and authorize the execution of applications you deem legitimate from an authorized share, follow the steps below:

      1) Create an object:

• Enter the name of the object, then mention Share in Device,
• Then enter the beginning of the share path with a star at the end (if you want to authorize all applications in this path):

 2) Create an application:

    The application contains a rule that manages binary execution from a network share, and asks the machine learning model to perform an analysis before installation.

 3)Offline option:

    Check the Offline box if you want to proceed with installation without analysis if the agent is offline, otherwise installation will be blocked until analysis.

4) Quarantine:

     Check the Quarantine box to send the file to quarantine if it is detected as malicious by the intelligence artificial model.

5) Erase : 

    Check the Erase box to delete the file if it is detected as malicious by by the intelligence artificial model.