Description This article describes a simple test to confirm FortiEDR's
ability to defend against ransomware encryption. Scope FortiEDR.
Solution The following PowerShell script simulates an encryption attack
on a specified folder and its content: Enc...
Description This article explains what a service access attempt means in
the context of a security event Scope FortiEDR. Solution Some
applications will try to perform a service access attempt, as seen in
the following security event, where a process...
Description This article indicates the logs to check when network
interfaces become undetectable on FortiManagers and FortiAnalyzers.
Scope FortiManager/FortiAnalyzer. Solution There are cases where certain
network interfaces on physical FortiManager...
Description This article describes how to discard changes saved in a
workflow session using FortiManager's API. Scope FortiManager v7.4.7,
v7.6.3. Solution FortiManager allows users to discard changes saved in a
workflow session, but not submitted fo...
Description This article describes how to create and delete users in the
threat hunting server. Scope FortiEDR. Solution A new user can be
created in an on-prem threat hunting repository server and added to an
existing group with the following comman...