This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

InterceptX Sophos Tester - Safe Browsing Exploit Succeeds

When running InterceptX and running the Sophos Tester tool Sophos provides, and selecting the Target as the Sophos Tester application, and choosing Category "Safe browsing" and selecting "WinINet hijack" and choosing to Execute it, InterceptX is not blocking/alerting about the action and the Sophos Tester tool actually shows that the exploit was "successful". Is this a known/reported issue being addressed so that InterceptX actually identifies and blocks the malicious actions for the Safe browsing WinINet hijack that your own testing tool runs (successfully)? Please advise. [Latest software versions used, system Windows 10 Enterprise x64 (live system, not a VM)]

 

Best regards,

Alex Thompson



This thread was automatically locked due to age.
  • For the Sophos Tester we are asking folks post their questions on the Intercept X Early Access Program forum

    The Sophos tester is designed to run on a device without Sophos deployed or one with the Early Access Program endpoint.

    In this case running the test against a non-browser application should show success. Intercept X detects applications registered as browsers and and WinINet notifications should work if you test against a browser.