How can we convince S1 that our software is not malware?
Hi all - does anyone know the proper process for getting our signed files reviewed/whitelisted by SentinelOne?
We are a software vendor and our executables are code-signed by our company, but SentinelOne keeps detecting them as malicious. This is creating a lot of friction for our customers. With other security products, similar false positives in the past eventually corrected themselves, but with SentinelOne the issue has persisted for quite a while.
Right now, every MSP/IT department we work with has to create exceptions manually, usually based on our publisher name. That works, but it is not ideal and it creates unnecessary support overhead for everyone.
We are happy to contact SentinelOne directly and provide hashes, signed installers, company details, certificates, or anything else they need to review and fix the detections properly.
Has anyone gone through this process before? Is there a vendor submission portal or a recommended way to escalate recurring false positives?