SOLVING THE PROBLEM
Sandboxing enables you to execute files in an isolated environment, out of the network. Advanced Threat Inspection decrypts data stream and intercepts the file—and if it, after scanning, remains uncertain about the file’s intent, it then gets forwarded to the Sandbox.
The Sandbox simulates a complete Windows environment and executes the file as a user would—while file behaviour is monitored and reported back to the administrator. A sandbox should be safely hosted in the cloud to provide controlled detonation outside the secure perimeter.
A sandbox provides a controlled, contained environment to try out the file and is the ideal way to accurately predict what the file’s true intentions are. It will perform an impact analysis and reporting back to the administrator. It’s run as-a-Service with no on-site hardware required.
Isolated detonation of suspicious executables
Impact analysis and report
No on-site hardware required
The following Clavister products are capable of providing this use case.
Solutions & Customers
The following solutions and customers benefit from this use-case: