Configuring predefined rules
Predefined rules include templates of abnormal activity on the protected computer. Abnormal activity can signify an attempted attack. Predefined rules are powered by heuristic analysis. Seven predefined rules are available for Log Inspection. You can enable or disable any of the rules. Predefined rules cannot be deleted.
You can configure the triggering criteria for rules that monitor events for the following operations:
- Password brute-force detection
- Network login detection
How to configure predefined rules in Administration Console (MMC)
How to configure predefined rules in the Web Console and Cloud Console
How to configure predefined rules in the application interface.
As a result, when the rule triggers, Kaspersky Endpoint Security creates Critical event.