Management General Management Topics Logging and Reporting Multi-Domain Management Policy Management
- Local User Groups
AI & Machine Learning
I am deploying SBA to all of our endpoints, but was curious to run some tests against it as I go. I recently downloaded and tried to run a tool called RanSim from the folks over at KnowBe4; The tool is supposed to simulate behaviors of various ransomware variants. When using this tool to execute its tests, SBA knocked it down as expected, generated an analysis, etc. etc... (before the tool could even run its tests )
I thought this was a neat little test and was wondering if anyone does something like this on occasion, and what tools / methods do you use?
Could it be an idea to make a similar non harmfull tool on check point wiki, were one can test both antibot and antivirus blade?
We do have test URLs already that serve non-harmful content for AV, Anti-Bot, and Threat Emulation.
You can find them on Threatwiki.checkpoint.com on the upper right hand corner of the page
Yes. Thats the one I was thinking of. But do you have similar url that simulate ransomware and crypto mining without harming the Customers machine?
Thanks Dameon! I will certainly check that out... I knew that there was an eicar file that could be downloaded from the Check Point site to test AV, but testing Anti-Bot at the gateway would be awesome also. However, we don't have TE at the gateway, only with endpoint SBA; Also, since our laptop endpoints are off network so often, I am interested in testing the endpoints on their own..