vanroy 0 Posted September 19 Share Posted September 19 Hello, It is possible to see the URL or IP from site not listed as malicious and the endpoint downloaded malware from this site. ESET Inspect only see the executions. With other XDR this is possible. thank you. Quote Link to comment Share on other sites More sharing options...
j91321 3 Posted Wednesday at 12:27 PM Share Posted Wednesday at 12:27 PM With ESET Inspect Cloud you mainly see Raw Events that are attached to triggered detection. Su unless this HttpRequest or TcpIpProtocolIdentified event triggered some detection rule you won't see it in EIC. You would need On-Prem version which stores all raw events. Quote Link to comment Share on other sites More sharing options...
vanroy 0 Posted Wednesday at 09:05 PM Author Share Posted Wednesday at 09:05 PM ok thanks, This is limitation of EIC should release and improve the Relationship graph Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.