Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 10 subscribers
  • Views 1084 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

API - Detected Exploits

Lior Dahan1

Hey again!

I'm developing an integration between Sophos Central (Endpoint Protection) and another service, and one of the API endpoints I go to is the detected exploits one.

I am able to access the endpoint for listing and getting a single object, but I don't have any objects to parse. Is there a way to create detected exploits to fetch with the API?



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to Lior Dahan1

    You can use these to have a secure test and trigger an event:

    or you search for common ransomware testfiles like "Locky" or "Wannacry" at your own risk. I'm not allowed to share these files directly here as we have to follow the community guidelines. Please be aware that running malicious files could harm your system. Consider using a virtual machine to run them. Don't forget to enable Sophos products on the testing devices and be aware that you've secured your VM environment like networking isolation and disabling Copy&Paste, etc. 

    Thanks,

    Intrusus
    Sophos Certified Engineer | Sophos Certified Technician

    private lab:
    XG firewall with SFOS 18.0.3 MR-3
    Intercept X Advanced (for Server) with EDR EAP latest
    If a post solves your question use the 'Verify Answer' link

Children
Unfiltered HTML