Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
garster
Explorer

How to create a trigger for the IPS critical alert?

Hello,

We have alerts setup to immediately sent emails for "critical" IPS items.  In order to audit this and verify it is working, how can we purposely trigger this alert for a CnC callback and trigger the email alert on the IPS?

Regards,

Gary

4 Replies
Chris_Atkinson
Employee Employee
Employee

Did you try something like CheckMe?

http://www.cpcheckme.com/

Or the test URLs linked from the top right here:

https://threatwiki.checkpoint.com/threatwiki/public.htm

CCSM R77/R80/ELITE
0 Kudos
garster
Explorer

Hi Chris,

I did try that but it does not seem to trigger the alert email.

 

 

0 Kudos
Tal_Paz-Fridman
Employee
Employee

You would need to make sure that the specific IPS Protection that is triggered has Mail under Track

0 Kudos
Chris_Atkinson
Employee Employee
Employee

sk115236 lists the protections that CheckMe should trigger (if activated) for reference.

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events