antiExploit Object

The antiExploit object contains the basic details on the Anti-Exploit settings in a sensor policy.

Note

The Exploit Protection section of the policy (in this antiExploit object) is available in versions 20.1.120 and higher.

Field	Type	Description
enabled	Boolean	Indicates whether Anti-Exploit Protection is enabled for sensors assigned to this policy.
antiExploitMode	Enum	The mode to use for Anti-Exploit Protection. Possible values include: EXISTING: Maintains the existing settings on the machine before you enabled the Cybereason platform’s Anti-Exploit feature. CAUTIOUS: Enables a baseline configuration set by the Cybereason security research team. AGGRESSIVE: Enables a more aggressive configuration set by the Cybereason security research team.
antiExploitExclusions	Array	A list of processes to exclude from Anti-Exploit Protection. If you do not want to add any exclusions, leave this array empty.
processName	String	The name of the process to exclude from Anti-Exploit protection.
modifiedBy	String	The Cybereason user name of the user creating this policy.
lastModified	Long	The time (in milliseconds) when this policy is created.