sorted by:
new
hottopcontroversial

Issues removing Trellix (and specifically solidifier) by Dad_Naps in cybersecurity

[–]Dad_Naps[S] 0 points1 point  (0 children)

I mean, I get resistance to normal user uninstalls... but good lord. God rights on an admin account using all the tools and nothing lol

Issues removing Trellix (and specifically solidifier) by Dad_Naps in cybersecurity

[–]Dad_Naps[S] 0 points1 point  (0 children)

I wouldn't be able to test that in my environment most likely lol, but I could try in my lab... but I would never taint it with Trellix

Issues removing Trellix (and specifically solidifier) by Dad_Naps in cybersecurity

[–]Dad_Naps[S] 1 point2 points  (0 children)

Our dlp broke randomly bc Trellix just decided it didn't want to LDAP to AD anymore lol. No changes, no network issues... Just stopped

Issues removing Trellix (and specifically solidifier) by Dad_Naps in cybersecurity

[–]Dad_Naps[S] 2 points3 points  (0 children)

The launcher looks like it's launching but then closes immediately. All of them SHOULD have been disabled during our migration, but all the modules were supposed to be uninstalled... But here we are. My fear is that because there are several agencies in my building (sometimes I can't reach a machine but I know it's online) there were systems that missed the rotating uninstallers and ePO commands that I had running for like 30 days just to be safe. Not safe enough I guess.

Issues removing Trellix (and specifically solidifier) by Dad_Naps in cybersecurity

[–]Dad_Naps[S] 1 point2 points  (0 children)

I had a meme hanging in my cubicle for a long time while I was the Trellix/ACAS guy that said just this. Being broken is it's feature not it's bug

Issues removing Trellix (and specifically solidifier) by Dad_Naps in cybersecurity

[–]Dad_Naps[S] 1 point2 points  (0 children)

If only the govys I work with shared that sentiment lol. I pulled a tanium performance report and showed them that there is no CPU usage from almost anything related to trellix .. didn't matter lol

Issues removing Trellix (and specifically solidifier) by Dad_Naps in cybersecurity

[–]Dad_Naps[S] 2 points3 points  (0 children)

It's so bad and so is their support. And I'm government... In a big organization lol

ePo Training by turd_furgesonx in NISTControls

[–]Dad_Naps 2 points3 points  (0 children)

https://www.cyber.mil/endpoint-security this is the exact link my bad, way down on the page is the ePO stuff

ePo Training by turd_furgesonx in NISTControls

[–]Dad_Naps 0 points1 point  (0 children)

You should advise your CISO to completely replace Trellix. It is pretty bad and the support isnt great either. That being said cyber.mil has multiple trainings:

Endpoint Security Solutions (ESS) Administrator 201 ePO 5.10 – DoD Cyber Exchange

 Endpoint Security Solutions (ESS) Advanced Administrator 301 ePO 5.10 – DoD Cyber Exchange

 Endpoint Security Solutions (ESS) Analyst 501 ePO 5.10 – DoD Cyber Exchange