- Products
- Learn
- Local User Groups
- Partners
- More
Are you a member of CheckMates?
×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Hello,
yesterday I enabled Tech Preview mode to check out a finding and turned it off after again.
Today I discovered a "Genai" rule option in the rule base. Idk if it's related to the enable/disable of the tech preview mode.
The rule builder itself look the same and I have no idea where to put my natural language (uri regex i.e.?). I cannot find any information about this. Is this documented anywhere?
Second question. I had some SQL injections in a password field yesterday. One of them was a "legit" password matching an SQL injection (partly, mostly a false positive) and two were SQL injections by myself to confirm the previous finding.
Today I got the question, whether these 3 are malicious or benign requests, grouped together. Lets assume the first SQL injection was benign, the later malicious.
What should I answer, as I cannot split them up or should I not answer at all?
What are the consequences of flagging a malicious request as benign, in the short/medium/long term for the MLM?
Cheers
Christoph
Tue 12 May 2026 @ 10:00 AM (CEST)
The Cloud Architects Series: Check Point Cloud Firewall delivered as a serviceWed 13 May 2026 @ 11:00 AM (EDT)
TechTalk: The State of Ransomware Q1 2026: Key Trends and Their ImpactTue 12 May 2026 @ 10:00 AM (CEST)
The Cloud Architects Series: Check Point Cloud Firewall delivered as a serviceTue 19 May 2026 @ 06:00 PM (IDT)
AI Security Masters E8 - Claude Mythos: New Era in Cyber Security
