eornate 4 Posted November 24, 2023 Share Posted November 24, 2023 Hi everyone, Have you been ever block appcation by HIPS rule via hash (MD5 ,SHA1, SHA-256) ? As far as i know i've just blocked application by Application name ( with a specific path ) Link to comment Share on other sites More sharing options...
Administrators Marcos 5,097 Posted November 24, 2023 Administrators Share Posted November 24, 2023 It's possible to block files by SHA1 only via ESET Inspect XDR. Link to comment Share on other sites More sharing options...
eornate 4 Posted November 24, 2023 Author Share Posted November 24, 2023 18 minutes ago, Marcos said: It's possible to block files by SHA1 only via ESET Inspect XDR. Thanks your response. As i know, ESET Inspect XDR requirement clients installed endpoint ( ESET endpoint) and use that to block application/file by HASH. So i've had question why not block application/file by HASH (instead of name application) on the endpoint ? Link to comment Share on other sites More sharing options...
Administrators Solution Marcos 5,097 Posted November 24, 2023 Administrators Solution Share Posted November 24, 2023 Just now, eornate said: Thanks your response. As i know, ESET Inspect XDR requirement clients installed endpoint ( ESET endpoint) and use that to block application/file by HASH. So i've had question why not block application/file by HASH (instead of name application) on the endpoint ? Blocking files by hash is supported only via ESET Inspect. Link to comment Share on other sites More sharing options...
Recommended Posts