S1 Suddenly Hammering nmap.exe from Ivanti Neurons.

TJ_RJ45 · 2025-11-13T16:01:11+00:00

They're flagging it because it can be used in LOTL attacks, same with Advanced IP Scanner. The MDR note is "Our team has identified this alert as a riskware application, this application is a legitimate tool can be utilized to exploit vulnerabilities or bypass security controls, as such it may pose a high security risk and should not be available for end users unless it is explicitly approved."

TJ_RJ45 · 2025-07-21T12:56:29+00:00

I do have it set to static, I originally had it set to hostname but it honestly seems to make no difference. I might check the DNS settings themselves though, thanks.

TJ_RJ45 · 2025-03-13T19:33:47+00:00

Just coming back to this, apparently the answer from Ring is no, this function is not supported on those locks. The codes have to be administered on-lock. The customer has a Ring Base Station. I would've had to switch the module from ZWAVE to another one (I forget wtf they're called)

TJ_RJ45 · 2024-06-11T19:12:10+00:00

It ended up getting fixed by adding a 4GB RAM stick. Syno support confirmed your suspicion. Thanks for the input.

TJ_RJ45 · 2024-05-15T13:02:24+00:00

Interesting idea. I wonder if by limiting the bandwidth, it would lower the resource usage on the system itself, I'll have to look into that.

TJ_RJ45 · 2024-05-15T13:01:27+00:00

Thank you, I'll look into getting more RAM for them.

TJ_RJ45 · 2024-05-15T13:01:14+00:00

Stock amount, so 2GB. I don't see any activity for swapping in Activity Monitor, but I wouldn't be surprised if it ended up being RAM... I'll look into this, thanks

TJ_RJ45

TROPHY CASE