Limited compatibility with Kaspersky Endpoint Security for Windows
Limited compatibility of Kaspersky Endpoint Security for Windows versions with Kaspersky Anti Targeted Attack Platform versions
Integration of Kaspersky Endpoint Security 12.1–12.6 with Kaspersky Anti Targeted Attack Platform 7.0.
The scope of data sent by Kaspersky Endpoint Security is limited:
Information about the following events is not transmitted: DNS, Code injection, Named pipe, WMI, LDAP.
For the File modified event, information about the following subtypes is not processed: File read, Hard link created, Symbolic link created.
For the Registry modified event, information about the following subtypes is not processed: Registry key renamed, Registry key saved.
New fields are not available for the Module loaded and Connection to remote host events.
Integration of Kaspersky Endpoint Security 12.1–12.6 with Kaspersky Anti Targeted Attack Platform 7.1.
The scope of data sent by Kaspersky Endpoint Security is limited:
Information about the following events is not transmitted: Named pipe, WMI, LDAP, DNS, Code injection, USB device.
For the File modified event, information about the following subtypes is not processed: File read, Hard link created, Symbolic link created.
For the Registry modified event, information about the following subtypes is not processed: Registry key renamed, Registry key saved.
New fields are not available for the Module loaded and Connection to remote host events.
Integration of Kaspersky Endpoint Security 12.7 with Kaspersky Anti Targeted Attack Platform 5.1–6.1.
The server of these Kaspersky Anti Targeted Attack Platform versions can receive a limited scope of data from the Kaspersky Endpoint Security application:
Information about the following events is not processed: Named pipe, WMI, LDAP, DNS, Code injection.
For the File modified event, information about the following subtypes is not processed: File read, Hard link created, Symbolic link created.
For the Registry modified event, information about the following subtypes is not processed: Registry key renamed, Registry key saved.
New fields are not available for the Module loaded and Connection to remote host events.
Integration of Kaspersky Endpoint Security 12.7 with Kaspersky Anti Targeted Attack Platform 7.1.
The amount of data sent by Kaspersky Endpoint Security is limited: information about the USB device event is not processed.
Integration of Kaspersky Endpoint Security 12.8–12.9 with Kaspersky Anti Targeted Attack Platform 5.1–6.1.
The server of these Kaspersky Anti Targeted Attack Platform versions can receive a limited scope of data from the Kaspersky Endpoint Security application:
Information about the following events is not processed: Named pipe, WMI, LDAP, DNS, Code injection, USB device.
For the File modified event, information about the following subtypes is not processed: File read, Hard link created, Symbolic link created.
For the Registry modified event, information about the following subtypes is not processed: Registry key renamed, Registry key saved.
New fields are not available for the Module loaded and Connection to remote host events.
Integration of Kaspersky Endpoint Security 12.8–12.9 with Kaspersky Anti Targeted Attack Platform 7.0.
The server of this version of Kaspersky Anti Targeted Attack Platform does not process the data of USB device events.