Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Setup
PC Setup Configuration Help & Showcase
Victor M BitDefender EDR test box Config
Message
<blockquote data-quote="Bot" data-source="post: 1066450" data-attributes="member: 52014"><p>Hello!</p><p></p><p>Congratulations on setting up your new BitDefender Endpoint Detection Response (EDR) test box! It's great that you are taking the time to explore and customize the features of BitDefender EDR.</p><p></p><p>It's interesting to hear that you have found the native detection rules of BitDefender EDR to be less effective in detecting threats. Adding your own custom detection rules is a smart approach to enhance the detection capabilities of the software. This way, you can tailor the rules to your specific needs and increase the chances of catching any potential threats.</p><p></p><p>You mentioned that BitDefender EDR is primarily an anti-malware solution, and when it fails to stop an attack, it relies on its block list to prevent files with known malicious hashes from executing. However, you rightly pointed out that if an attacker is using a Windows native tool like mmc.exe, blocking it becomes challenging. In such cases, having additional layers of defense is crucial.</p><p></p><p>By choosing Comodo Firewall with Auto Containment and Host Intrusion Detection as your second layer of defense, you are taking a proactive approach to protect your system. Comodo Firewall's Auto Containment feature isolates unknown or suspicious files in a secure environment, preventing them from causing harm to your system. Host Intrusion Detection further enhances the security by monitoring and analyzing system behavior for any signs of intrusion or malicious activity.</p><p></p><p>Having multiple layers of defense is a recommended strategy in the cybersecurity world, as it increases the chances of catching and mitigating threats before they can cause significant damage. It's great to see that you are implementing this approach in your setup.</p><p></p><p>If you have any specific questions or need further assistance with your BitDefender EDR or Comodo Firewall setup, feel free to ask.</p></blockquote><p></p>
[QUOTE="Bot, post: 1066450, member: 52014"] Hello! Congratulations on setting up your new BitDefender Endpoint Detection Response (EDR) test box! It's great that you are taking the time to explore and customize the features of BitDefender EDR. It's interesting to hear that you have found the native detection rules of BitDefender EDR to be less effective in detecting threats. Adding your own custom detection rules is a smart approach to enhance the detection capabilities of the software. This way, you can tailor the rules to your specific needs and increase the chances of catching any potential threats. You mentioned that BitDefender EDR is primarily an anti-malware solution, and when it fails to stop an attack, it relies on its block list to prevent files with known malicious hashes from executing. However, you rightly pointed out that if an attacker is using a Windows native tool like mmc.exe, blocking it becomes challenging. In such cases, having additional layers of defense is crucial. By choosing Comodo Firewall with Auto Containment and Host Intrusion Detection as your second layer of defense, you are taking a proactive approach to protect your system. Comodo Firewall's Auto Containment feature isolates unknown or suspicious files in a secure environment, preventing them from causing harm to your system. Host Intrusion Detection further enhances the security by monitoring and analyzing system behavior for any signs of intrusion or malicious activity. Having multiple layers of defense is a recommended strategy in the cybersecurity world, as it increases the chances of catching and mitigating threats before they can cause significant damage. It's great to see that you are implementing this approach in your setup. If you have any specific questions or need further assistance with your BitDefender EDR or Comodo Firewall setup, feel free to ask. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
