Exploit prevention lets you:
By default, exploit prevention and all exploit prevention options are turned on.
You can exclude applications from exploit prevention. Note that they will still be protected by CryptoGuard and Safe Browsing.
For more information about the recommended settings for exploit prevention, see the Sophos Enterprise Console policy setup guide.
For more information, see Managing roles and sub-estates.
HitmanPro.Alert detects applications, on endpoints, that need protection. It reports the detected application to the Sophos Enterprise Console server. The server collates the applications that require protection and every 120 minutes merges the new application data into the policy. The server distributes the updated policy to the endpoints and provides the list of applications to be protected.