> ## Documentation Index
> Fetch the complete documentation index at: https://docs.cystack.net/llms.txt
> Use this file to discover all available pages before exploring further.

# Software Control

> Monitor and control softwares installed on endpoints

<Card>
  **Use Cases:**

  * Gain visibility into applications installed on employee devices to support upgrade planning, standardization, and compliance with standards such as ISO 27001, PCI-DSS, and HIPAA.
  * Identify and remove unauthorized applications (e.g., file sharing tools, insecure chat softwares).
  * Rapidly detect applications containing critical vulnerabilities to ensure timely removal and minimize the risk of endpoint compromise.
</Card>

## Feature Details

### View Installed Software

Administrators can review the software installed on any device by following these steps:

<Steps>
  <Step title={<>Navigate to the "Endpoint" section {'\u2192'} "Device".</>} />

  <Step title={<>Click on the target device {'\u2192'} click the <code>View details</code> button {'\u2192'} open the "Software" tab.</>} />

  <Step title="View installation details">
    Here, you can view the complete list of software installed on the device or search for specific softwares.

    <img src="https://mintcdn.com/cystack/NwFcT4Q52zfPNCn3/images/endpoint/en-software-installed-list.png?fit=max&auto=format&n=NwFcT4Q52zfPNCn3&q=85&s=f49d10e0a91ebc5bbe02d88f27307d7b" alt="software-installed-list.png" width="1811" height="911" data-path="images/endpoint/en-software-installed-list.png" />
  </Step>
</Steps>

### Block Software

To block a specific application, Administrators should perform the following steps:

<Steps>
  <Step title={<>Navigate to "Endpoint" {'\u2192'} "Prevention" {'\u2192'} "Software".</>} />

  <Step title={<>Click the <code>Add software policy</code> button.</>} />

  <Step title="Configure blocking rules in the policy creation screen:">
    * **Path**: The file path to the application on the device. You can use operators such as <code>equals</code>, <code>contains</code>, <code>starts with</code>, or <code>ends with</code> to target the specific software.
    * **Hash**: The cryptographic hash of the software (using SHA-256). You must enter the correct hash value to effectively block the application.
    * **Process Name**: The name of the process when the software is running. You can use operators such as <code>equals</code>, <code>contains</code>, <code>starts with</code>, or <code>ends with</code> to target the software.

    <Accordion title="How to find process names on Windows:" defaultOpen>
      **1.** Typically, the process name matches the software name. Administrators can try entering the software name into the <code>Name</code> field.

      **2.** If blocking is unsuccessful, the process name may differ from the software name. To find the correct process name:

      * Open the software you wish to block.
      * Open **Task Manager** {'\u2192'} locate the running software.
      * The process name listed there is the value required for the policy.
    </Accordion>

    * **Signature**: You can choose to block unsigned software (including software that is unsigned, self-signed, or not certified by a trusted organization).\
      <Note>**Note:** Signature verification does not apply to the Linux operating system.</Note>
          <img src="https://mintcdn.com/cystack/NwFcT4Q52zfPNCn3/images/endpoint/en-software-block-rules.png?fit=max&auto=format&n=NwFcT4Q52zfPNCn3&q=85&s=136f1c17711ead2d4df7dda082f9274f" alt="software-block-rules.png" width="1075" height="428" data-path="images/endpoint/en-software-block-rules.png" />
  </Step>

  <Step title={<>Combine multiple rules using "AND" or "OR" operators</>}>
    You can combine multiple rules to create a comprehensive blocking policy using <code>AND</code> and <code>OR</code> logic:

    * <code>AND</code>: Groups two or more rules together. The software is blocked only when **all** rules in the group are met.
    * <code>OR</code>: Connects rules or rule groups. The software is blocked if **at least one** connected rule or rule group is met.
  </Step>

  <Step title={<>After defining the rules, select the target tags or devices. The selected devices, or devices belonging to the selected tags, will have the software blocked according to the policy.</>} />

  <Step title={<>Click <code>Save</code> to create the policy. The policy will be displayed in the list as shown below.</>}>
    <img src="https://mintcdn.com/cystack/VpRN_kk1rAZUN_De/images/endpoint/en-software-policy-list.png?fit=max&auto=format&n=VpRN_kk1rAZUN_De&q=85&s=9f720939d89efe38ad5447c5f5477cc9" alt="software-policy-list.png" width="1125" height="523" data-path="images/endpoint/en-software-policy-list.png" />
  </Step>
</Steps>

<Note>Administrators can temporarily disable, edit, or delete existing policies as needed.</Note>
