Serious Discussion Harmony Endpoint by Check Point

Trident said:
There is nothing complicated really, it’s all about having a love for books, or in this case, the Admin guide. I just LOVE reading guides not only for that but also for appliances and everything. Before I buy something, I’ve already read the guide. I’ve even read the Apple OS guides, which are about 2K pages average. If you read, you will understand everything.
I read the Harmony admin guide 5-6 times before I start the trial and now I can use it with my eyes closed.
Click to expand...
I tended to get bogged down with the reading if I'm also not using the software at the same time to better understand what I'm reading, and then if the software is running ok and I have basic understanding of app, I stop reading... :oops::ROFLMAO: (but promise will follow thru with both Harmony and Di) :whistle:
 
  • Like
Reactions: Nevi, likeastar20 and Trident
simmerskool said:
I tended to get bogged down with the reading if I'm also not using the software at the same time to better understand what I'm reading, and then if the software is running ok and I have basic understanding of app, I stop reading... :oops::ROFLMAO:
Click to expand...
You watched the pre-deployment video.
 
  • Like
Reactions: simmerskool
Trident said:
Bro, it was widely discussed on this thread. Trial is available by having a look at the first post.

Also here: Harmony Endpoint (SandBlast Agent) Free Trial | Endpoint Security | Check Point Software

Use an iCloud address to start trial and you can choose whether you wanna be contacted or not.

If you decide you wanna purchase at one point, have a look at checkpoint.direct. The annual price of a client managed by you is 39+VAT (about £47).
Click to expand...
It asks for a business email

1688146683154.png
 
  • Like
Reactions: Nevi, piquiteco, simmerskool and 2 others
Andrew3000 said:
It asks for a business email

View attachment 276753
Click to expand...
Try here

Check Point Infinity Portal

The Infinity Portal represents a new paradigm in security management by delivering all the security capabilities of the Check Point Infinity architecture from a single pane of glass. With an Infinity Portal account, organizations secure and manage their entire IT infrastructure – networks...
portal.checkpoint.com portal.checkpoint.com
 
  • Like
Reactions: piquiteco, simmerskool, Andrew3000 and 1 other person
Trident said:
Try here

Check Point Infinity Portal

The Infinity Portal represents a new paradigm in security management by delivering all the security capabilities of the Check Point Infinity architecture from a single pane of glass. With an Infinity Portal account, organizations secure and manage their entire IT infrastructure – networks...
portal.checkpoint.com portal.checkpoint.com
Click to expand...
Nope :(
1688150060547.png
 
  • Wow
Reactions: piquiteco, simmerskool and Trident
  • Like
Reactions: simmerskool and Kongo
NormanF said:
In Microsoft Defender For Business, the recommended security policies are pre-configured out of the box. All the end user has to do is onboard their device.
Click to expand...
There are policies pre-defined in Harmony as well. You can choose “strict”. But on business environment it is always recommended to review and plan a policy. The policy should provide maximum security whilst allowing users to work freely and without distractions.
 
  • Like
Reactions: piquiteco, simmerskool and Kongo
Wait I have a question - how are some things detected by behavioral detection but not by the emulatior?
 
Xeno1234 said:
Wait I have a question - how are some things detected by behavioral detection but not by the emulatior?
Click to expand...
Emulation involves running on a VM. Virtual machines have various artefacts. Although Check Point has taken every care to hide the artefacts using both hardware and software features, fraction of malware may not perform actions when emulated. When you execute them on a real system, the classification engines will observe the malicious behaviour. Bypassing emulation like the Check Point (and also CrowdStrike and Palo Alto one) is not an easy task and doesn’t happen frequently. When it happens, other layers still provide protection.
 
  • Like
Reactions: piquiteco and simmerskool
Trident said:
Emulation involves running on a VM. Virtual machines have various artefacts. Although Check Point has taken every care to hide the artefacts using both hardware and software features, fraction of malware may not perform actions when emulated. When you execute them on a real system, the classification engines will observe the malicious behaviour. Bypassing emulation like the Check Point (and also CrowdStrike and Palo Alto one) is not an easy task and doesn’t happen frequently. When it happens, other layers still provide protection.
Click to expand...
Ahh. But I've seen things that arent anti-sandbox get past it, but are detected by Behavioral Detection. How does that work?
 
How do you disable the browser extension - for me it slows down donwloads, alot. Emulation should take 2-3 minutes but instead downloads take around 10.
 

You may also like...