If you are interested in a pre-built solution with customization options, please refer to our knowledge base article on the MetaDefender Core USB Default Configuration.
#Endpoint usb security pdf#
A PDF version of this step-by-step guide can be found here. This is the second revision of the USB drive, which offers improvements that decrease the number of steps and general complexity required to build a fully customized drive. We would like to share our steps as a tutorial below for others to create the thumb drive themselves, and we are also making the solution available for download. OPSWAT's bootable USB thumb drive is created with standard open source software packages as well as OPSWAT's own MetaDefender Core and MetaDefender Client software.
In this solution, MetaDefender Client is configured to auto start upon boot-up and begins transmitting all of the files on the host computer to a predefined local Metascan Server. The question is can you configure the thumb drive to have not only the operating system but also an endpoint scanning client that will have the ability to scan the files on the host system for malware? OPSWAT decided to answer that question by building a thumb drive solution consisting of a bootable thumb drive embedded with our MetaDefender Client application, which uses multiple antivirus engines to multi-scan endpoint files and drives for malware. There are many free products available to create bootable USB thumb drives and "Live" CD/DVDs, which allow you to boot into an operating system on that media while having access to a host computer's resources. Another organization could want to make sure all files on its computers are free of malware, even those kernel level driver files that are often hidden from file systems when being used by the resident operating system of that computer. For example, a facility might need to allow contractor owned laptops to enter secure areas, but want to first scan all the files on these laptops to ensure all are free of malware. Organizations often need the ability to scan the files of a PC or laptop for malware via an external system rather than from the PC itself.