Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Custom hashes

    In the cases of new/developing incidents, and/or adding IOCs from external threat sharing platforms, it would be incredibly useful for administrators to be able to add custom hashes and have Sophos detect/quarantine them as malicious.

    12 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  APT/zero day detection  ·  Flag idea as inappropriate…  ·  Admin →
    • option to block access to newly registered domains

      In the UTM it would be nice if we had the ability to have a policy that would block access to domains registered within the previous month, once a site had been around for over a month it would be 'allowed'

      4 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  APT/zero day detection  ·  Flag idea as inappropriate…  ·  Admin →
      • Create 'tag' in the IDE's that shows what they are trying to detect.

        We have 'sav-update' installed on our mail relays so they automatically download the latest detection IDE's.
        It would be a good feature to know that the latest IDE is supposed to detect X-trojan, X-virus or X-worm.
        We had an example where one of our customers asked if we now detected the Troj/Agent-ARJS Trojan and I had to reply 'I think so' rather than a definite 'yes'. If I could search the IDE's with the Unix 'strings' command looking for say Troj/Agent-ARJS and found a hit then that would be brilliant.
        It should be a simple case of just putting a…

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  APT/zero day detection  ·  Flag idea as inappropriate…  ·  Admin →
        • Don't see your idea?

        Feedback and Knowledge Base

        icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.