ARMmaster17
commented
9 years ago Will probably want to go with the second option. Basically Gerbil will scan for "code red" packets, inject "code green" status, then forward it to the intended host. Will require more research into the SCOM protocol and server recognition/fingerprinting.
Using the System Center service either as a data harvesting node or to inject fake data to avoid alerting system administrators.