Kaspersky Endpoint Security 11.3.0 for Linux

Kaspersky Endpoint Security 11.3.0 for Linux (hereinafter also referred to as Kaspersky Endpoint Security) protects computers running the Linux operating systems against malware. Threats can enter the system via network data links or from removable drives.

The application lets you:

• Scan file system objects located on local disks of the computer, as well as mounted and shared resources, which are accessed via SMB and NFS protocols.
• Scan objects in the file system both in real time using the File Threat Protection task and on demand using virus scan tasks.
• Scan startup objects, boot sectors, process memory, and kernel memory.
• Detect infected objects and neutralize detected threats.
• Automatically select an action to neutralize the threat.
• Save backup copies of files before disinfection or deletion and restore files from backups.
• Manage tasks and configure their parameters.
• Add keys and activate the program using activation codes.
• Update the program with service packs.
• Update application databases from Kaspersky update servers, via the Administration Server, or from a user-defined source by schedule or on demand.
• Use application databases to detect and disinfect infected files. During the scan process, the program analyzes each file for the presence of a threat: it compares the file code with the code of a specific threat and looks for possible matches.
• Monitor the integrity of the system or specified files and report changes. System Integrity Monitoring can be performed in continuous monitoring mode and in on-demand scan mode.
• Manage the operating system firewall and, if necessary, restore the set of firewall rules that have been changed.
• Protect files in local directories with network access via SMB / NFS from remote malicious encryption.
• Analyze traffic sent to users' computers via HTTP / HTTPS and FTP and check if web addresses are malicious or phishing.
• Configure flexible restrictions on access to data storage devices (hard disks, removable disks, CD / DVD drives), data transfer equipment (modems), data conversion devices (printers) and interfaces for connecting devices to computers (USB, FireWire).
• Check removable drives when connected to a computer.
• Check incoming network traffic for activity typical of network attacks.
• Scan containers, images and namespaces, as well as use Kaspersky Endpoint Security as a container application (hereinafter referred to as KESL container).
• Receive information about the actions of programs on the computer.
• Configure encrypted connections scan settings.
• Control the launch of programs on users' computers, which reduces the risk of computer infection by restricting access to programs.
• Get information about all executable files of the applications installed on computers using the Inventory task, which can be useful, for example, for creating application control rules.
• Participate in Kaspersky Security Network. The use of data from Kaspersky Security Network ensures faster responses by Kaspersky Endpoint Security to various threats, improves the performance of some protection components, and reduces the likelihood of false positives.
• Configure integration between Kaspersky Endpoint Security and Kaspersky Managed Detection and Response (MDR) to enable continuous search, detection and elimination of threats aimed at your organization.
• Allow users without root permissions to manage the application functions.
• Notify the administrator about events that occurred while the program was running.
• Check the integrity of program components using the Integrity Checker utility.

You can manage Kaspersky Endpoint Security using the following methods:

• Using application control commands from the command line.
• Using Kaspersky Security Center Administration Console.
• Using Kaspersky Security Center Web Console and Kaspersky Security Center Cloud Console.
• Using a graphical user interface.

In the territory of the USA, the update functionality (including anti-virus signature updates and code base updates), as well as the KSN functionality will no longer be available in the application starting 12:00 AM Eastern Daylight Time (EDT) September 10, 2024 in compliance with trade restrictions.