Executable as a parameter is referring to information on at least one of these four values:
- Name of the application
- File Description - File description within the application executable (not a "Comment" description of the executable)
- File name - Application name with or without paths
- Fingerprint - MD5 Fingerprint
KB may provide some assistance in How to create Network IPS exceptions for Host Intrusion Prevention Technical Articles ID: KB77236 Last Modified: 6/19/2014
I did a presentation about HIPS configuration last year.
It has some tips on using HIPS with Code Signatures to cripple attacks....
However...port scans are tricky if you have printers...vulnerability scanners...etc...you have to exempt by user or machine probably.