Technical Support doesn't support custom rules with ENS. Customers assume all responsibility for troubleshooting and updating of custom rules including the following:

• Customers who develop their own custom Access Protection rules and Exploit Prevention Expert Rules in ENS Threat Prevention.
• Customers who alter custom rules that we provide.

If custom rules have adversely affected your systems and environment, or if you suspect they have, Technical Support recommends that you remove or disable those rules.
 
Assistance with writing custom rules is available through our Professional Services. For more details, contact your Sales representative.