Behavioral Guard - SandBlast Agent Behavioral Guard is a behavioral detection engine that detects and remediates all forms of malicious behavior. If malicious behavior is detected, a forensics report is generated of the entire attack. The attack can be automatically or manually remediated based on the forensics report. To learn how to configure Behavioral Guard, see sk129892.
Data Collection - SandBlast Agent improves the detection of malicious threats by sending anonymized incident-related data to the Check Point ThreatCloud. It is enabled by default. To learn more about data collection and to find out how to disable it, see sk129753.
Remote Access VPN - Support for Key Storage Providers (KSP) for machine certificates. Support for KSP is enabled by default for machine authentication. If machine authentication is configured on the client and on the Security Gateway, clients can authenticate with machine certificates that use a Key Storage Provider.
Full Disk Encryption - Improved logging when enabling or disabling Pre-boot using the fdecontrol.exe utility.
Important: Starting from E80.85, SandBlast Agent improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.
Endpoint Security E80.85 Clients
E80.85 Endpoint Security Clients for Windows OS (Recommended)
A zip file that contains all package permutations listed below.
E80.85 Complete Endpoint Security Client for 32 bit systems
If the policy setting "Require that only an authorized preboot user is allowed to log into the operation system" is enabled, it does not block unauthorized users from signing-in using credential providers other than password and smartcard. For further information see sk128992.