1 Reply Latest reply on Aug 23, 2012 2:16 PM by greatscott

    prevention of hidden file extensions ...

      A question and discussion session between me and my colleague prompted this debate.  Does Sig 413 alert if "malacious actor 1" has admin level rights to a box... possibly having moved laterally across the network, and drops his tool kit on a system.  Now some of these tools are executables hidden as .docs or .pdfs.  Will HIPS identify and eliminate this threat?