Faizan Siddiuqi 1 Posted June 3, 2022 Share Posted June 3, 2022 Hi, we have Vulnerability scanner installed on a system where ESET endpoint antivirus also installed, but when we run the scan lot of detections appeared in Detection tab and it sent Network attack Alert notification. so my question is can we add the scanner system as an exception in this detection rule?? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,243 Posted June 3, 2022 Administrators Share Posted June 3, 2022 You can temporarily disable Network attack protection before running a vulnerability scan: Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 1 Posted June 3, 2022 Author Share Posted June 3, 2022 ok, but can't we put this in exception? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,243 Posted June 3, 2022 Administrators Share Posted June 3, 2022 You can create temporary exceptions but temporarily disabling NAP is much easier and quicker since you need to disable it only for a short time. Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 1 Posted June 3, 2022 Author Share Posted June 3, 2022 Can we add it in IDS rule? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,243 Posted June 3, 2022 Administrators Share Posted June 3, 2022 There are many attacks that are detected by NAP. Why do you prefer creating numerous exceptions that you would remove after running a vulnerability scan? Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 1 Posted June 3, 2022 Author Share Posted June 3, 2022 Actually we run scanner after every 15 days, we dn't want to enable or disable NAP manually every time. Link to comment Share on other sites More sharing options...
Administrators Marcos 5,243 Posted June 3, 2022 Administrators Share Posted June 3, 2022 You can create IDS exceptions only for "attacks" from the IP of the machine on which the vulnerability scan is run. Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 1 Posted June 3, 2022 Author Share Posted June 3, 2022 Thanks Marcos! Link to comment Share on other sites More sharing options...
Recommended Posts