- Sep 3, 2017
- 825
Internet is required for majority of the malwares to begin the work > Like downloading payloads..
BB depends on the behaviour of sample > This depends on internet connectivity>
Sometimes BB goes well with cloud (not all cases)
Which security suite has the best behavior blocker?
- Thread starter Brie
- Start date
Please provide comments and solutions that are helpful to the author of this topic.
- Status
BB depends on the behaviour of sample > This depends on internet connectivity>
Sometimes BB goes well with cloud (not all cases)
- Aug 21, 2018
- 505
What is the purpose of BB if it depends on internet connection? Its purpose is to catch unknown threaths.
But yes, you are right about internet connection when for example browser memory modifications are detected.
BB is good for system tampering etc, you dont need i internet connection for that.
But yes, you are right about internet connection when for example browser memory modifications are detected.
BB is good for system tampering etc, you dont need i internet connection for that.
- Dec 12, 2013
- 542
I don't know who among BB in AV/IS is the best but for me the last 3 BB was standalone apps - DSA, Mamutu and ThreatFire (it's alphabetical order but my favoutite was TF). Each of them didn't need to be connected to the internet but each of them could detect trying of making connection or port listening.
So...test with disabled internet connection make sens for me.
So...test with disabled internet connection make sens for me.
- Status
Similar threads
