request a live demo
back to resources
  • Revised August 18, 2025
  • /

Windows Agent Install

Enigma Sensor Installation Guide for Windows

This guide provides instructions for installing the Enigma traffic analysis sensor on Windows 11 systems. Enigma enables comprehensive network traffic analysis to help identify and mitigate security threats.

System Requirements

  • Supported Operating Systems:
    • Windows 11 Professional or Enterprise Edition (required for Docker Desktop)
  • Minimum Hardware:
    • Intel i5 (or compatible) CPU, minimum 4 cores
    • 12 GB RAM (16 GB recommended)
    • 10 GB available disk space
    • 2 NICs (one for SPAN, one for management; one must support promiscuous mode)
  • Other:
    • Sleep settings disabled
    • Firewall disabled on Enigma machine
    • Antivirus/EDR/DLP configured to allow packet capture, file creation, and Docker operations

Prerequisites

Before installation, ensure you have:

  1. Local administrator rights (to create/modify Windows Services, network settings, and files)
  2. Ability to run PowerShell as Administrator
  3. API key from Enigma User Profile
  4. No VPN client running on the Enigma machine
  5. Corporate firewall, proxy, and DNS allow outbound TCP 443 to https://enigmaai.net/
  6. Network switch supports SPAN (or use a network TAP)

Installation

  1. Download enigma-sensor-installer.exe from the latest GitHub release
  2. Right-click enigma-sensor-installer.exe and select Run as administrator
  3. When prompted, enter your API key from Enigma User Profile
  4. Follow the installation wizard to complete setup
  5. After installation, verify the service is posting data:
    • Navigate to C:\Users\<user>\Enigma-Docker\ and open ps-script-logs.txt
    • Look for a successful data upload message (search for Status Code: 200)
    • If not present after a few minutes, verify:
      • Enigma Windows service is running
      • If issues persist, contact Enigma support

How It Works

Once installed, the Enigma sensor will:

  1. Capture network traffic samples at regular intervals
  2. Process captured data through the Enigma analysis engine
  3. Send encrypted analysis results to the Enigma cloud platform
  4. Store data in C:\Users\<user>\Enigma-Docker\ and log activity in ps-script-logs.txt

Troubleshooting

Common Issues

  • Service Not Posting Data: Check Enigma Windows service status. Review ps-script-logs.txt for errors.
  • API Key Issues: Ensure the correct API key is entered. Contact Enigma if the key is lost.
  • Network Issues: Confirm outbound TCP 443 to https://enigmaai.net/ is allowed. Check proxy/firewall settings.
  • Insufficient Resources: Verify RAM, disk space, and NIC configuration meet requirements.
  • Security Software Blocking: Ensure EDR, DLP, antivirus, and host firewalls are configured to allow:
    • Packet capture
    • File creation in target directories

Uninstallation

To uninstall the Enigma sensor:

  1. Open Settings > Apps > Apps & features (or Control Panel > Programs and Features)
  2. Find “Enigma Sensor” in the list of installed programs
  3. Click Uninstall and follow the prompts

Security Considerations

The Enigma sensor requires:

  • Read access to network interfaces for packet capture
  • Regular outbound connections to Enigma services
  • Security software (EDR, DLP, antivirus, VPN, proxy, DNS agents) must not block sensor operation

For further assistance, contact Enigma Support.