We recently released SandBlast Agent E82.00!
E82.00 introduces new features, stability and quality improvements. The complete list of improvements can be found in the version release’s Secure Knowledge sk163233
BitLocker Management from SmartEndpoint
BitLocker is a very popular full volume encryption feature included with Microsoft Windows versions.
Due to its popularity we have integrated the management of BitLocker into SmartEndpoint to ease its operation to our customers and enable single management experience for endpoint security services.
BitLocker management is available for data protection license endpoints with Full Disk Encryption service enabled.
Note that single encryption method is supported, either Check’s Point Full Disk Encryption or BitLocker with the ability to switch between the two using Crossgrade Functionality. More information is available at BitLocker Management Administration Guide.
BitLocker management requirements:
- Endpoint Operating System – Windows 10 Pro and Enterprise editions
- R80.30 with the BitLocker Management Hotfix sk163297
New Detection Techniques
E82.00 introduces new enhancements to the Behavioral Guard to detect and prevent complex Meterpreter/reverse shell and RDP Brute Force attacks.
Reverse shell attacks obtain control over a compromised system, an attacker usually aims to gain interactive shell access for arbitrary command execution which is very complex to detect.
The detections is currently deployed is silent mode and will be activated in a later stage.
Important Note: If you’re participating in a POC, security lab evaluation or penetration test of SandBlast Agent, please contact us to activate these detection enhancements as we know pen-testers love such attacks J
VPN's Post Disconnect Feature
The post disconnect script feature allows users to run scripts on client computers after disconnections from gateways.
Please refer to the Revision History of Remote Access for Windows Administration Guide.