Whitelist Configuration

MetaDefender Sandbox (previously known as OPSWAT Filescan Sandbox) comes with a variety of whitelist configuration options (see sub-pages linked below).

Skip Whitelisted files from being processed

If skipWhitelistedFiles is enabled in the broker (see broker.cfg ), any submitted file is first reputation checked against local and remote whitelists. All whitelist data/integrations are implemented at the analysis node. If preferred, whitelisted files may be analyzed, which will yield the same detailed information as for a regular analysis, except that the verdict will default to BENIGN (i.e. a file containing a lot of "potentially malicious" artifacts will still receive the BENIGN verdict, as it is known to be non-malicious).

Local whitelist configuration: Local Whitelist

Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard