Quantum SD-WAN Monitoring
Register HereCheckMates Fest 2026
Watch Now!AI Security Masters
Hacking with AI: The Dark Side of Innovation
MVP 2026: Submissions
Are Now Open!
Overlap in Security Validation
Help us to understand your needs better
CheckMates Go:
R82.10 and Rationalizing Multi Vendor Security Policies
From a security standpoint, it makes little sense to launch Check Point SmartConsole Extensions directly from the internet. When extensions are executed remotely, there is no practical opportunity to inspect the code for malware or hidden backdoors before it runs in a privileged management environment. This introduces an unnecessary attack surface into the security infrastructure.
To address this risk, I built a small local web server that allows SmartConsole Extensions to be started quickly and securely from the local workstation. The idea is simple: keep the entire execution chain under your control and ensure that every extension can be reviewed before it is used.
Short Overview:
Small, compact HTTPS server
Can be started on any PC with administrative privileges
No daemon or service installation required for port 443
Includes an integrated file manager for managing the web root
Self-signed HTTPS key and certificate are provided
No configuration files required
On Windows systems, the first step is to install “HTTPS Server PRO” from the link provided below. After installation, start the web server locally with administrative privileges and upload the SmartConsole Extension into the built-in File Manager.
Once the file is hosted locally, the extension can be opened in SmartConsole via a local HTTPS URL, for example:
https://localhost/<Name_of_SmartConsole_App>
This approach ensures that extensions are executed only from a trusted local source, enables prior code inspection, and significantly reduces the risk of introducing malicious or manipulated components into the management plane (SMS).
Download Link:
HTTPS Server PRO
In the next comment, I have included a video that shows how it works.
From a security standpoint, it makes little sense to launch Check Point SmartConsole Extensions directly from the internet. When extensions are executed remotely, there is no practical opportunity to inspect the code for malware or hidden backdoors before it runs in a privileged management environment. This introduces an unnecessary attack surface into the security infrastructure.
To address this risk, I built a small local web server that allows SmartConsole Extensions to be star
...;
In this short video, I demonstrate the essential steps required to get started with the tool and integrate it securely into your daily workflow.
In this short video, I demonstrate the essential steps required to get started with the tool and integrate it securely into your daily workflow.
I have reviewed the video. It looks very interesting. Can the HTTPS server also be used as a standard web server without Smart Console extensions?
Vincent_Bacher
I believe this small HTTPS server can serve all files and allow retrieval via HTTPS. That's about it. However, that's all that's needed here.
You can execute any HTML files located in the web root via HTTP GET requests.
Yes, this makes it a fully functional lightweight HTTPS server.
TIP:
If you place an index.html file in the web root directory, it will be served automatically by default.
You can execute any HTML files located in the web root via HTTP GET requests.
Yes, this makes it a fully functional lightweight HTTPS server.
TIP:
If you place an index.html file in the web root directory, it will be served automatically by default.
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY
