I have been testing products for use as a remedial tool to be used for targeted scans. We have McAfee , along with Avecto Defendpoint through ePO as our corporate standard for endpoint security. As part of our endpoint security response, when we have identified a end point as requiring such activity, we are looking for a product for making targeted scans for remediation. Enter EEK Pro.
I have been testing various products , and so far EEK seems like the right tool for our needs. We have nearly 12,000 end points and we need a tool at each major location for our Service Desk team. EEK's command line scanner is the perfect tool for our needs, I have been working to create the perfect batch file to run the scanner with a preset command line switches for our needs and ease of use for our technicians. The only issue I have had is with the "whitelist" feature.
I have been creating our own, as we have a lot of in house scripting and SCCM that sets off many false positives, but this is not the issue, it is the fact I am seemingly unable to whitelist by file name. If I add directories (and we have a few) they are skipped by the scan, as expected, but adding individual file names however does not. We would like to whitelist our in house files, not always entire directories for obvious reasons.
Is there special formatting to be used when whitelisting files over directories?
Any assistance would be great, this is the last hurdle for me to be able to make the final recommendation, as I believe EEK Pro is exactly what we need. I would be adding my batch file, and whitelist to each stick before shipping it to each of 13 sites for use.
Thanks very much for your time,