Faizan Siddiuqi 0 Posted June 3 Share Posted June 3 Hi, we have Vulnerability scanner installed on a system where ESET endpoint antivirus also installed, but when we run the scan lot of detections appeared in Detection tab and it sent Network attack Alert notification. so my question is can we add the scanner system as an exception in this detection rule?? Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,243 Posted June 3 Administrators Share Posted June 3 You can temporarily disable Network attack protection before running a vulnerability scan: Quote Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 0 Posted June 3 Author Share Posted June 3 ok, but can't we put this in exception? Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,243 Posted June 3 Administrators Share Posted June 3 You can create temporary exceptions but temporarily disabling NAP is much easier and quicker since you need to disable it only for a short time. Quote Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 0 Posted June 3 Author Share Posted June 3 Can we add it in IDS rule? Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,243 Posted June 3 Administrators Share Posted June 3 There are many attacks that are detected by NAP. Why do you prefer creating numerous exceptions that you would remove after running a vulnerability scan? Quote Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 0 Posted June 3 Author Share Posted June 3 Actually we run scanner after every 15 days, we dn't want to enable or disable NAP manually every time. Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,243 Posted June 3 Administrators Share Posted June 3 You can create IDS exceptions only for "attacks" from the IP of the machine on which the vulnerability scan is run. Quote Link to comment Share on other sites More sharing options...
Faizan Siddiuqi 0 Posted June 3 Author Share Posted June 3 Thanks Marcos! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.