This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Gregory_Link
Contributor
‎2019-12-06 05:43 AM

Looking for clarification on Threat Emulation Custom Password Configs

Jump to solution

We are looking to create a custom password list using the SK below based on intel and active threats we've seen.  What I'm having trouble understanding though is why we need to add phrases as well given that threat emulation already knows what inbound emails to look at based on the extensions you have defined.  What value do we get out of this?

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2019-12-06 12:15 PM

Jump to solution
The phrases are keywords that might indicate a password is encoded in the email for an end user to type in to decrypt the file.

View solution in original post

0 Kudos
1 Reply
PhoneBoy
Admin
Admin
‎2019-12-06 12:15 PM

Jump to solution
The phrases are keywords that might indicate a password is encoded in the email for an end user to type in to decrypt the file.
0 Kudos