Scripts for testing Windows end-point security software
Has anyone written any scripts for testing the alerting/blocking thresholds/capability of Windows host-based security software, such as Symantec SEP, Crowdstrike Falcon, or Carbon Black? Sometimes I wonder where the lines are drawn for detection/alerting, but that is part of the proprietary, "secret sauce" of the security vendor's products.