Is there any report from EDR end or SEPM end with which we can get the list of hash values blocked - which are present in the EDR blocklist?
- Endpoint Detection and Response (EDR) 4.6 UI contains three reports, "Executive Report", "Incident Details Report", and "Exports Report"
- Between Search>Database>Events and "Exports Report", EDR 4.6 UI contains features that permit checking effectiveness of a Deny list entry.
To confirm blocks of a single item on the EDR Deny list
To search for blocks of all items on the EDR Deny list