Jump to content

Question related to how to apply statistical criteria efficiently when creating a trigger


Recommended Posts

Guest Leandro

I created a task on ESET Protect in order to isolate computers from the network and a trigger that will run as soon as the AV detects 50 threats within 5 minutes.
Basically what I want to do is to isolate a computer if the AV detects a variety of threats based on the number of occurrences in a period of time.
I actually have a couple of questions. Firstly, how efficient is this method to prevent threats to replicate on the network? Secondly, What do I have to take into account when correlating the number of occurrences vs time period efficiently? I mean, The more occurrences in a short period of time, the more efficient will be? Last but not least, what do you guys consider when creating a trigger like this one based on the statistical approach? Sorry if I wasn't clear enough.

Thanks in advance.

Link to comment
Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...