Malwarebytes Endpoint Detection and Response includes Active Response Shell which provides the ability to investigate attacks, collect forensic data, and remediate detections on remote endpoints. Authorized Super Admins can securely access their endpoints remotely with Malwarebytes Nebula.
Configure Active Response Shell
To view and modify Active Response Shell settings, a Super Admin must have Active Response Shell permission enabled by the Nebula Account Owner. For more information, see Manage Users in Nebula.
- Go to Configure > Policies.
- Click New or select an existing policy.
- Select the Endpoint Detection and Response tab.
- Locate Active Response Shell and check the box for Windows.
Active Response Shell
Provides access to use Active Response Shell to manage your endpoints remotely with Malwarebytes Nebula. Available options are:
- Active Response Shell: Turns active response shell on or off.
Advanced settings
Advanced settings include additional features for Active Response Shell. Available options are:
- Enable secure connections using certificate pinning: Limits which digital certificates are used with the Active Response Shell, providing additional security.
To use Active Response Shell, see Active Response Shell in Nebula.
Return to the Malwarebytes Nebula Administrator Guide.