Merge pull request Pennyw0rth#932 from joaovarelas/main

enum_av module: add checkpoint indicators

Author: NeffIsBack

nxc/modules/enum_av.py

@@ -264,6 +264,17 @@ def LsarLookupNames(self, dce, policyHandle, service):
                 {"name": "CybereasonAPServerProxyIpc_*", "processes": ["minionhost.exe"]}
             ]
         },
+        {
+            "name": "Check Point Endpoint Security",
+            "services": [
+                {"name": "CPDA", "description": "Check Point Endpoint Agent"},
+                {"name": "vsmon", "description": "Check Point Endpoint Security Network Protection"},
+                {"name": "CPFileAnlyz", "description": "Check Point Endpoint Security File Analyzer"},
+                {"name": "EPClientUIService", "description": "Check Point Endpoint Security Client UI"}
+
+            ],
+            "pipes": []
+        },
         {
             "name": "ESET",
             "services": [