Configuring Exploit Prevention in the Administration Console

In the Administration Console, you can configure Exploit Prevention in the policy properties (Advanced Threat Protection → Behavior Detection).

Exploit Prevention component settings

Setting	Description
Enable Exploit Prevention	This check box enables or disables Exploit Prevention. This check box is cleared by default.
Action on exploit detection	The action that the application will perform when an exploit is detected: Block (default value). The application blocks the malicious activity of the exploit and records information about this in the event log. Inform. The application does not block the activity of the exploit, but only records information about exploit detection in the event log.

Setting

Description

Enable Exploit Prevention

This check box enables or disables Exploit Prevention.

This check box is cleared by default.

Action on exploit detection

The action that the application will perform when an exploit is detected:

Block (default value). The application blocks the malicious activity of the exploit and records information about this in the event log.
Inform. The application does not block the activity of the exploit, but only records information about exploit detection in the event log.