May 30
Citadel browser agent
Расширение для браузера, которое обнаруживает вредоносное ПО и теневые ИТ, анализируя и регистрируя события безопасности с соблюдением конфиденциальности. Поставляется предварительно интегрированным с открытым исходным кодом SIEM Wazuh.
Citadel может выполнять веб-фильтрацию, ограничивать максимальную продолжительность сеансов аутентификации, обеспечивать соблюдение политики MFA и помогать в соблюдении политики паролей.
- IP, URL or domain is blacklisted (good default blacklists provided, can be bypassable or not by users)
- user is using unencrypted protocols for an application (e.g. FTP, HTTP or WS)
- user is using URL with username or password in the URL
- user has downloaded a file
- user has selected a file on the local drive (N.B. it is unknown if the file was uploaded)
- user has opened the print dialog for a page (N.B. it is unknown if the dialog was cancelled)
- the user is warned that the downloaded file is dangerous
- user has accepted downloading of a dangerous file
- user has used a password that does not conform to the password policy
- user connected using a password but without MFA, when policy requires it for this particular application
- security-related browser errors (e.g. certificate issues, detection of phishing or virus, etc. See list)
May 30, 14:28
0 views
0 reposts