1 Reply Latest reply on Oct 30, 2015 8:22 AM by jj4sec

    File Overrides

    cslye

      When attempting to do file overrides in TIE Reputations it appears to require both the MD5 and SHA1 values of the file. 

       

      Often times we receive threat intel that lacks both a SHA1 and MD5.

       

      When a TIE client sends queries up, has it precalculated the MD5, SHA1 and SHA256 already?  If so, could this not be changed to allow for override entries to be created with any of these values?