Jump to content

Recommended Posts

Antipova Anna
Posted

Advice and Solutions (Forum Knowledgebase) Disclaimer. Read before using materials.

Step-by-step guide

  1. Install KSWS and make sure the Anti-Cryptor protection component running and its Work Mode is Active.

  2. Install AESCrypt on a remote host.

  3. Try to encrypt the files on a network share protected by KSWS.
     
    image.thumb.png.82ef19348abf4bbc8163d83a13956364.pngimage.thumb.png.d290102de81a3cf7e49fde6ac2cb5d83.png
  4. Enter a password.
  5. As encryption starts, Anti-Cryptor detects it and blocks remote user's session. In KSWS 11, by default, the application blocks a host's access to network file resources for 30 minutes.
  6. The following attempts to access shared folder will fail. 
  7. KSWS logs attempts to encrypt the data.
     image.thumb.png.e56b7948f9da3f720535502f1a295cfe.png

  8. The attacker host appears in the Blocked host storage now.
Posted

Hello Anna, 

great work. 
Is it possible to test the KES Anti-Cryptor in the same way?

Regards
Alex

Antipova Anna
Posted

Hello! 

Indeed, the article applies to KES Anti-cryptor as well.

Best regards,

Anna

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now


×
×
  • Create New...