Print Download PDF Send Feedback

Previous

Next

SandBlast Agent Use Case

Scenario: You see a Threat Emulation or Anti-Bot detection log. What can you do?

Recommendations:

  1. From the Forensics, Threat Emulation, or Anti-Bot log, open the Forensics Analysis Report.
  2. Open the Remediation tab to see the components of the attack and how they were treated.
  3. Delete all files that were created by the attack.
  4. Open the Business Impact tab to see files that might be affected.
  5. Open the Entry Point tab to see the path of the attack. Update your security policy to prevent similar attacks in the future.
22 July 2019
Was this helpful?
Incorrect information Not what I'm looking for Too much information Confusing information
© 2019 Check Point Software Technologies Ltd. All rights reserved.