Test Endpoint Security

Applies To: WatchGuard Advanced EPDR This topic applies to the WatchGuard Advanced EPDR endpoint security product., WatchGuard EPDR This topic applies to the WatchGuard EPDR endpoint security product., WatchGuard EDR This topic applies to the WatchGuard EDR endpoint security product., WatchGuard EPP This topic applies to the WatchGuard EPP endpoint security product., WatchGuard EDR Core This topic applies to the WatchGuard EDR Core, available in the Total Security Suite license.

WatchGuard Endpoint Security is a managed service in WatchGuard Cloud that helps you protect IT assets. With WatchGuard Endpoint Security, you can review detected security problems and develop prevention and response plans for unknown and advanced persistent threats (APTs).

You can safely test WatchGuard Endpoint Security features with the methods described in this help topic.

Advanced Protection

When Advanced Protection is in Lock mode, your endpoint security product does not allow devices to run any software that is in the process of classification or is already classified as malware. Software can run only after Advanced Protection verifies it as goodware.

To test this feature, from PSInfo, you can use the AD Sample Test File tool to run a test file of an unknown type. The test helps you to confirm that the endpoint protection successfully stops unknown file types. For more information, see the PSInfo AD Sample Test File tool.

Traditional Malware

To test the detection of traditional malware, or potentially unwanted programs (PUPs), you can use the Anti-Malware Testing Standards Organization (AMTSO) tools that are available from the AMTSO website (external link). The AMTSO Security Features Check (SFC) tools run tests that are safe to use.

Contact Support

If you have to contact Support, you can use the PSInfo tool to provide diagnostic logs to help Support troubleshoot your issue. For more information, go to Get Started with PSInfo.