Traps and Endpoint Security Manager Processes
Table of Contents
4.2 (EoS)
Expand all | Collapse all
-
- Set Up the Endpoint Infrastructure
- Activate Traps Licenses
-
- Endpoint Infrastructure Installation Considerations
- TLS/SSL Encryption for Traps Components
- Configure the MS-SQL Server Database
- Install the Endpoint Security Manager Server Software
- Install the Endpoint Security Manager Console Software
- Manage Proxy Communication with the Endpoint Security Manager
- Load Balance Traffic to ESM Servers
-
- Malware Protection Policy Best Practices
- Malware Protection Flow
- Manage Trusted Signers
-
- Remove an Endpoint from the Health Page
- Install an End-of-Life Traps Agent Version
-
-
- Traps Troubleshooting Resources
- Traps and Endpoint Security Manager Processes
- ESM Tech Support File
-
- Access Cytool
- View the Status of the Agent Using Cytool
- View Processes Currently Protected by Traps Using Cytool
- Manage Logging of Traps Components Using Cytool
- Restore a Quarantined File Using Cytool
- View Statistics for a Protected Process Using Cytool
- View Details About the Traps Local Analysis Module Using Cy...
- View Hash Details About a File Using Cytool
Traps and Endpoint Security Manager Processes
The following processes are initiated by Traps and the
Endpoint Security Manager (ESM).
Component | Process Name | Description |
|---|---|---|
| ESM | ||
ESM Server | CyveraServer.exe | ESM Server core service, which
communicates with the agents and with WildFire. |
| Traps for Linux | ||
Traps agent | trapsd | Traps daemon which handles the communication
between the agent and the ESM. |
Traps agent | authorized | Traps daemon which handles the malware protection flow. |
Traps agent | pmd | Traps daemon which responsible for policy
and core security functionality. |
| Traps for Mac | ||
Traps agent | trapsd | Traps daemon which handles the communication
between the agent and the ESM. |
Traps agent | authorized | Traps daemon which handles the malware protection flow. |
Traps agent | pmd | Traps daemon which responsible for policy
and core security functionality. |
Traps agent | kproc_ctrl | Kernel extension which enforces the protection
policy on new created processes |
| Traps for Windows | ||
Traps agent | CyveraConsole.exe | User interface for the Traps console. Runs
only after the user launches the console from the notification area
(system tray). |
Traps agent | CyveraService.exe | Traps agent core service, which works with
Cyserver.exe to enforce the policy, communicate with the server,
and prevent security attacks, when needed. |
Traps agent | Cyserver.exe | Traps agent core service, which works with CyveraService.exe
to enforce the policy, communicate with the server, and prevent
security attacks, when needed. |
Traps agent | Cytray.exe | Traps Tray process, allows the user to click
on the tray icon and run the console. Runs constantly in the background. |
Traps agent | Tda.exe | Traps dump analyzer, which analyzes the
contents of memory locations and other data when a prevention event
occurs on the endpoint. |
Traps agent | Tdawork.exe | Traps dump analyzer worker processes, one
per processor. These processes run in the background and should
run constantly. |