<< PREVIOUS  NEXT >>

 

RELATED INCIDENTS

  1. If one or more incidents are related to a profile or the associated libraries, it is displayed as below

    Picture 1073742252

  2. Hover the mouse over the icon to view detailed information on the detected incidents

    Picture 1073742251

  3. A click on the icon displays the Incidents page with the list of incidents related to the profile

    Picture 1073742250

  4. The incident can be viewed at the process and library levels also with the incident icon and the Source as Incident

    Picture 1073742247

    1. A click on the icon displays the Incidents page with the list of incidents related to the profile

      Picture 1073742246

  5. On Windows servers, when both Memory Exploit Protection and Library Monitoring are enabled in protect mode, for certain library injection attacks, MEP detects and kills the sourcing process (that is trying to inject a malicious library into a benign process). This attack is reported as a Memory Exploit Protection incident and NOT as a New Library incident

 

<< PREVIOUS  NEXT >>