Help

 

BreachGuard Video Demos

BreachProbe Video Demos

How do I use BreachGuard ?

BreachGuard Blocking Options

How does BreachGuard help me ?

How does BreachProbe help me

Identity Theft Protection

Monitor Joint Credit Card Account

Test credit card numbers

 

 

 

 

 

 

 

 

 

 

 

 

 

 

BreachGuard_Installation
Changing your password
Auto block and Auto Allow options

Setting the "Disable Packet Allow option"
Accessing BreachGuard configuration options
Viewing the Packet log file
Viewing the file scanner log file
Scanning files with BreachGuard
 Setting up File Scanner "Filter Options"
 Scanning files larger than 5MB

Uninstalling BreachGuard

Re-Installing BreachGuard

 

Importing PCAP file into BreachProbe

Resolving hostnames

Exporting data

Generating SHA256 Hash


 

Please read the License Agreement before installing BreachGuard

Download and double-click  "breachguard.exe" and follow the instructions provided by the Install Wizard. The program icons will appear on the Desktop and in windows system tray once the installation is finished.

After the installation is complete, you will be prompted to set the new password.

New password Setting prompt after program installation

Back to the top of this page

  • Changing your password

    The password can be changed by going to Start menu > Program Files > BreachGuard > click the "Options" button > Enter the password in the password prompt window and click on the "Other" tab to change the password.

OR

The "Options" menu can also be accessed by right clicking on the program icon   running in the system tray.

                                    Back to the top of this page

 

The "Auto block Packet after time-out" option will automatically block the transmission of credit card data in clear text.

 

The "Auto block and Auto Allow Packet after time-out" options can be configured by going to  Start menu > Program Files > BreachGuard > click the "Options" button > Enter the password in the password prompt window and click on the "Packet Scanner options" tab.

 

The "Auto Allow Packet after time-out" option will automatically allow the transmission of credit card number(s) in clear text ( Note: This option is not available when "Disable Packet Allow option" is enabled.


 Both Auto Block and Auto Allow have a 20 second time-out.

 

Back to the top of this page

The "Options" menu can be accessed by going to Start menu > Program Files > BreachGuard > click the "Options" button > enter the password in the password prompt window.

OR

Right click on the program icon running in the system tray and select "Options" > enter the password in the password prompt window

 By right clicking on the program icon running in the system tray and selecting "Options"

Back to the top of this page

This disables the "Allow" option in the alert window when the transmission of credit card number(s) is detected in clear text. Users can only and block the insecure transmission of credit card numbers.

The "Disable Packet Allow option"  can be accessed by going to Start menu > Program Files > BreachGuard > click the "Options" button > enter the password in the password prompt window > click on the "Other" tab and select "Disable Packet Allow option"

OR

Right click on the program icon running in the system tray and select "Options" > enter the password in the password prompt window > click on the "Other" tab and select "Disable Packet Allow option"

By default  "Disable Packet Allow option" is NOT enabled.

You can also view BreachGuard Blocking Options webpage from more information ( Recommended)

Back to the top of this page

The alerts generated by the clear-text transmission of credit card number(s) are logged to the "Packet Log" file.

 

The packet scanner log can be accessed by going to Start menu > Program Files > BreachGuard > Click the "View Log" button > enter the password in the password prompt window and click on the "Packet log" tab to view the log file.

OR

Right click on the program icon running in the system tray and select "View Log" > enter the password in the password prompt window and click on the "Packet log" tab to view the log file.

 

 

BreachGuard packet log viewer

 

The "Packet Log" data is identified by:

 

Program : The program used to transmit credit card numbers.

Time: The timestamp of the alert

Source IP address: The IP address of your computer.

Destination IP address: The IP address of the remote host

Port: The remote port number

Credit Card Information: Type of Credit Card number detected VISA, AMEX, MASTERCARD.  

Current user:  The currently logged in Windows username.     

 

Back to the top of this page

All file-level detections are logged to the scanner log file. This means that the file scanner will log the name and location of files where credit card data is stored in clear-text.

The file scanner log file can be accessed by going to Start menu > Program Files > BreachGuard > Click the "View Log" button. Enter the password in the password prompt window and click on the "file log" tab to view the log file.

OR

Right click on the program icon running in the system tray and select "View Log" > enter the password in the password prompt window and click on the "file log" tab to view the log file.

 

BreachGuard file scanner log viewer

Back to the top of this page

The File Scanner can be launched by going to Start menu > Program Files > BreachGuard > File Scanner  

OR

Right clickon on the program icon running in the system tray and select "File Scanner".

From the File Scanner window:

  1. Click on the browse button and select the storage drive, file or  directory you wish to scan.
  2. Click on the "Scan" button to start the scanning process (Tip: to stop the scanning process, press the "Stop" button)
  3. The scan after completion will show the total number of files scanned including the number of files where credit card number(s) detected stored in clear-text (as shown in the screenshot below)

BreachGuard file scanner status window

Back to the top of this page

The "File Scanner" filter options can be accessed  by going to Start menu > Program Files > BreachGuard > File scanner > click on the "Filter options" button > enter the password in the password prompt window and click on the "File scanner options" tab

OR

Right click on the program icon running in the system tray and select "File Scanner" > "Filter options" enter the password in the password prompt window and click on the "File scanner options" tab

You can make the appropriate file format selections or leave the default setting. You can also manually type the file extensions, for example *.exe,*.dll,*.jpg etc in the file scanner filter option.

By default the File Scanner will not scan exe, dll or picture files

Back to the top of this page

  • Scanning files larger than 5MB

    The "File Scanner" can scan files larger than 5Mb. You can change the file size in the file scanner filter     option.
The "File Scanner options" can be accessed by going to Start menu > Program Files > BreachGuard > File scanner > click on the "Filter options" button > enter the password in the password prompt window and click on the "File scanner options" tab

Enter the file size you wish to scan in the "Scan files less than" field.

Back to the top of this page

 

To uninstall the program go to Start menu > Program Files > BreachGuard > Uninstall > Type the password and click ok.

The uninstall wizard will remove BreachGuard from  your computer and will prompt you to reboot. The reboot is very important as it completely removes the program from your computer.

 

Back to the top of this page

 

Please completely remove BreachGuard from your computer before you re-install the program. Re-installing the program over the current installation is not recommended.

Back to the top of this page

 

Click on the program file menu > Open Pcap file. The import process can be stopped by using the "Stop" button.

Breachprobe can parse 2 GB "pcap" files. You will have to split your network packet capture files if they are over 2GB.

Back to the top of this page

From the BreachProbe main window > Right click on the selected packet and choose Resolve Hostname

Back to the top of this page

You can export the parsed data in the three ways:

 

1)  All packets

Click on program file menu >  Export All Packets. This will export all packets to a TXT file.

 

2)  Individual packets (both as text and pcap)

Right click on the selected packet and choose either "export selected packet (as text)"  or "export selected packet (as pcap)" . Save the data in the appropriate destination folder or directory

 

BreachProbe right click menu option

 

Only packets containing credit card data data.

This will only export packet containing credit card data. Packet without credit card will not be exported.

 

 Back to the top of this page

The program automatically generates the hash in a separate file and saves it in the same folder or directory where the data is exported.

If you name the exported data as "data.txt" the program will create a separate hash file and will name it "data.txt_sha256.txt"

Back to the top of this page

 


 
Copyright © 2009 Breachsource Inc, Inc. All Rights Reserved