cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

ThreatEmulation

Hi guys,

I'm wondering if anyone here has the link download files for ThreatEmulation test.  I just got Sandblast TE100X appliance in my environment and want to test if TE100X is able to detect files that unknown before and show detect/prevent on logview when file emulating completed on it.

Thank you in advance.

Regards,

Sarm

6 Replies

Re: ThreatEmulation

In ThreatWiki there is a "Test Threat Emulation" button.

0 Kudos

Re: ThreatEmulation

Hi Pedro,

It does not work. I did a live chat with someone guy of checkpoint technical support and he said that :"This is a known issue we're still working on it It needs time As for now, it is with the RnD "

0 Kudos

Re: ThreatEmulation

You can download malware files from Liste malware - malekal.com  It is very difficult to get some real zero day malware files but you can test your TE100X appliance by disabling the antivirus engine and force the emulation. Check Point antivirus engine (Kaspersky) has already signatures for the files from this site so that is the reason to disable the antivirus blade.

Regards,

Re: ThreatEmulation

็Hi Djelo,

That sounds good. I will try to do so.

Thank you for sharing idea.

0 Kudos
Sven_Glock
Silver

Re: ThreatEmulation

Ask your Check Point sales engineer - he/she will have an answer 

0 Kudos

Re: ThreatEmulation

Hello you can try to use this tool CheckMe Instant Security Check | Check Point Software Technologies  

I generates events on the TE blade.