In light of the Fireeye breach, we have some Network IOC and SHA256 hashes we want to watch for with ENS but I am not figuring out how to do that with ENS. One article talked about a hunt table, can't find how to make that in EPO. Another one pointed to Policy > ENS Threat Prevention > Access protection but it wants MD5 hashes and not SHA256. Can someone point me to the KB on how to add these to EPO??
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.