MetaDefender Core has a simple and powerful client that can be used to scan endpoints. However, these features may also be used for the following reasons:
Scanning a system without booting it
Scanning a system which does not have login credentials
Scanning a system which is suspected to contain malware and should not be allowed in its default state onto the network
In the scenarios mentioned above, the default MetaDefender client is insufficient. However, they can be addressed by hosting the client on a bootable Windows PE environment.
To scan with a bootable drive:
Insert the thumb drive into a powered-down machine.
Boot the machine, instructing the BIOS to load from the USB drive rather than the internal hard drive.
Use the MetaDefender client to scan the machine’s internal hard drive. No login credentials are required and, at no point is malware that may exist on the system, allowed to run.
OPSWAT recommends following our configuration guide for setting up a personalized bootable USB. The reason for this is two-fold:
To configuring the client with the IP address of your MetaDefender Core server is necessary
To ensure that the Windows PE environment contains all the necessary networking drivers for your systems. The system comes preconfigured with a standard set of drivers, but they cannot cover every hardware configuration
For a step-by-step guide on how to configure a customized bootable USB, please contact us.
This article pertains to all
This article was last updated on 2018-03-28