ESET Online Help

Search English
Select the category
Select the topic

ESET Inspect

ESET Inspect is a comprehensive Endpoint Detection and Response system that includes features such as: incident detection, incident management and response, data collection, indicators of compromise detection, anomaly detection, behavior detection, policy violations. For more information about ESET Inspect, its installation and functions, see ESET Inspect help.


important

ESET Enterprise Inspector and ESET Dynamic Threat Defense have been renamed to ESET Inspect and ESET LiveGuard Advanced.

ESET Inspect configuration

ESET Inspect requires ESET PROTECT to:

Create an ESET Inspect user with proper permissions. ESET PROTECT 9.0 contains the pre-defined permission sets for ESET Inspect users.

Create certificates that are used during ESET Inspect Server Installation.

Activate ESET Inspect on a device connected to ESET PROTECT.


note

You need to have ESET Inspect license to activate ESET Inspect.

Reporting of ESET Inspect detections in ESET PROTECT

If you add a device that runs the ESET Inspect Connector (properly configured and connected to the ESET Inspect Server) to ESET PROTECT, ESET Inspect reports the discovered detections in the ESET PROTECT Detections section. You can filter these detections by selecting the icon_ei_alertEnterprise Inspector detection category.

Another detection type reported by ESET Inspect are icon_blocked Blocked files. These are the blocked attempts to launch executables blacklisted in ESET Inspect (blocked hashes). icon_send_file Send File to EDTD is available only for icon_blocked Blocked files. You can send a file for the malware analysis (ESET LiveGuard Advanced) from ESET PROTECT Web Console. You can see the file analysis details in Submitted Files. If you want to submit other executable files manually for analysis in ESET LiveGuard Advanced, you can do it from the ESET endpoint product (you need to have the ESET LiveGuard Advanced license).

Managing ESET Inspect detections in ESET PROTECT

Integration of ESET Inspect detections in the ESET PROTECT Web Console allows you to manage ESET Inspect detections directly from the ESET PROTECT Web Console, without the need to open the ESET Inspect Web Console. For example, if you mark the detection as resolved in the ESET PROTECT Web Console, it is also marked as resolved in the ESET Inspect Web Console and vice versa.

Click the detection and selectdetails_defaultShow in EI to see detection details in the ESET Inspect Web Console.

The following system requirements must be met to enable management of ESET Inspect detections in the ESET PROTECT Web Console:

ESMC 7 and later.

ESET Endpoint software (ESET Endpoint Antivirus, ESET Endpoint Security) version 7 and later installed on the managed computer.