Jump to content

How to generate application blocking rules based on SHA256 file without source file [Kaspersky Security for Windows Server]


Recommended Posts

Antipova Anna
Posted

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials.

Description

As part of proactive security, you may wish to add sha256 to block the execution of application or malicious applications without having the original source files.

This article explains how to perform this action.

How To

  1. Create a text file containing the sha256 you want to block.

  2. Use the AppRulesGenerator.exe app to generate an xml file:

    image.png.61449c776e9a1a1c541029e1b8659270.png

  3. Import the generated .xml file into the KSWS policy:

    image.thumb.png.d9c1a981275cf0ab1d4b66c735b8a4de.png

AppRulesGenerator.exe can be downloaded here.

  • Like 1

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now


×
×
  • Create New...