This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Phaneath_Phourn
Participant
‎2019-03-04 07:36 PM

Detect Client's App or Service Request To Malicious Website

Dear All,

I have one concern from my client as they tracked on SmartTracker and SmartEvent and see some traffics from client to malicious URL in the network. And we want to know which application or which service are performing this action? So any idea or recommend on Checkpoint firewall or endpoint protection that we can see kind of this log? As on SmartEvent or SmartTracker we saw only source and malicious URL.

Thanks!

0 Kudos
3 Replies
PhoneBoy
Admin
Admin
‎2019-03-06 05:57 PM

Are you running SandBlast Agent on the Endpoint?

If so it would be possible to run a forensics report to see what on the Endpoint reached out.

0 Kudos
Phaneath_Phourn
Participant
‎2019-03-06 10:29 PM
In response to PhoneBoy

Hello Dameon,

Thanks for your reply. Actually, we don't have SandBlast Agent on endpoint. I just looking for any way that we can show on Checkpoint firewall based on our current environment of Threat Prevention or on SmartEvent.

0 Kudos
PhoneBoy
Admin
Admin
‎2019-03-07 07:15 AM
In response to Phaneath_Phourn

Unless you had an agent on the endpoint tracking what process issued what request, how would the gateway or the management know?

Also, how would an on-premise gateway protect an endpoint when it is outside your corporate perimeter?

This is why we offer SandBlast Agent (among other solutions) and they are meant to work together.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top