AV Antivirus Audit - Security Center - Windows
Log In or Register to download the BES file, and more.

0 Votes

Versioning - This is the latest version.

1Antivirus Audit - Security Center - Windows4/19/2016 9:44:03 PM
2Antivirus Audit - Security Center - Windows4/19/2016 10:13:41 PM
3AV Antivirus Audit - Security Center - Windows4/19/2016 10:21:03 PM

Description

This analysis should identify all AV products registered with the Windows Security Center APIs.

The `ProductState` should be a bit set of some sort that contains info about the state of the AV products detected.


Property Details

ID2996952
StatusQA - Ready for Production Level Testing
TitleAV Antivirus Audit - Security Center - Windows
DomainBESC
Added by on 4/19/2016 10:21:03 PM
Last Modified by on 4/19/2016 10:21:03 PM
Counters 4619 Views / 69 Downloads
User Rating 1 star 2 star 3 star 4 star 5 star * Average over 0 ratings. ** Log In or Register to add your rating.

Properties

AV DisplayName
Period 1 hour
 
  * Results in a true/false
Show indented relevance
unique values of string values of selects "displayname from AntiVirusProduct" of (if exists (wmis "root\SecurityCenter2") then (wmis "root\SecurityCenter2") else (wmis "root\SecurityCenter"))
AV ProductState
Period 1 hour
 
  * Results in a true/false
Show indented relevance
unique values of (string value of property "displayName" of it & ": state=" & string value of property "productState" of it) of select objects "displayName,productState from AntiVirusProduct" of wmis "root\SecurityCenter2"
AV RawData
Period 12 hours
 
  * Results in a true/false
Show indented relevance
( concatenations ", " of following texts of firsts "True, " of (it as string) of (true, (it) ) of properties whose(it as string does not start with "__") of it) of select objects "* from AntiVirusProduct" of (wmis "root\SecurityCenter";wmis "root\SecurityCenter2")

Relevance

isWindows (Relevance 1172)
Used in 1152 fixlets and 538 analyses   * Results in a true/false
Show indented relevance
windows of operating system

Sharing

Social Media:
Share this page on Yammer

Comments

Log In or Register to leave comments!