How do I whitelist SecTeer's PowerShell scripts?
The VulnDetect TSPM packages are all PowerShell scripts.
These scripts are all signed, and we recommend whitelisting/allowing all scripts that are signed by SecTeer VulnDetect.
SecTeer recommend using the built-in AllSigned security policy, as this improves your general security posture, if it is compatible with your other applications and management tools that use PowerShell.
If your 3rd party security solution doesn’t support whitelisting based on digitally signatures, you may be able to whitelist certain locations:
- C:\Programs Files (x86)\SecTeer VulnDetect\
- C:\ProgramData\SecTeer VulnDetect\
- C:\Users\\AppData\Local\SecTeer VulnDetect\
The user path is based on Env:\LOCALAPPDATA, so it may differ from system to system though this is rare.
Note that scripts running in Program Files and ProgramData all run as SYSTEM.
Scripts running in the user’s folder always run with the users’ privileges, as reported by the operating system.
Most tasks are launched via the Windows Task Scheduler; however, some may be initiated directly via the agent.
Related Articles
Do I need to activate PowerShell to run SecTeer VulnDetect?
Yes, all our packages rely on PowerShell 5.1, the default version on Windows 10 and Windows 11 and modern Windows Server releases. Our PowerShell scripts are digitally signed.How can SecTeer VulnDetect be used to allow scans of customer’s internal networks?
Using SecTeer VulnDetect, you have access to 2 different scan approaches: On-Demand Scanning From the VulnDetect GUI, you can easily create scan groups manually. The groups can then scan immediately. VulnDetect Agent – Single Mode The SecTeer ...Is SecTeer VulnDetect a software solution or an appliance?
SecTeer VulnDetect is a software solution. An agent is installed locally and has a minimal footprint on the system. The agent installation files are approximately 4MB and use negligible CPU resources and around 4MB of memory when running. At ...Which systems can SecTeer VulnDetect scan?
SecTeer VulnDetect is capable of scanning any Windows system, virtual machine and terminal server.Is the communication between the SecTeer VulnDetect Agent/Graphical User Interface and SecTeer encrypted?
All the communication between the SecTeer VulnDetect Agent or the SecTeer VulnDetect Graphical User Interface and SecTeer is made through port 443, and by using SSL protocol with 256-bit encryption.