For effective zero-day threat protection, organizations need solutions, that feature malware-analysis technologies and can detect evasive advanced threats and malware - today and tomorrow. To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advance Threat Protection Service detects and can block advanced threats at the gateway until verdict. This service is the only advanced-threat-detection offering, that combines multi-layer sandboxing, combining full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats, which are compute-environment specific and susceptible to evasion. The solution scans traffic and extracts suspicious code for analysis, but analyzes a broad range of file sizes and types. Global-threat intelligence infrastructure rapidly deploys remediation signatures for identified threats to all SonicWall network security appliances, thus preventing further infiltration. Customers benefit from high-security effectiveness, fast response times and reduced total cost of ownership.
SonicWall Capture Advanced Threat Protection Service - Subscription license (3 years) - 1 appliance - for NSa 2650, 2650 High Availability, 2650 TotalSecure
- Online & appliance based services - advanced threat detection
- Subscription license - 3 years
- SonicWall NSa 2650, 2650 High Availability, 2650 TotalSecure
- Multi-engine advanced threat analysis
SonicWALL Capture Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic, and detects and blocks intrusions and known malware. Suspicious files are sent to the SonicWALL Capture cloud service for analysis. The multi-engine sandbox platform, which combines virtualized sandboxing, full system emulation and hypervisor-level analysis technology, executes suspicious code and analyzes behavior, provides comprehensive visibility to malicious activity, while resisting evasion tactics and maximizing zero-day threat detection.
- Broad file type analysis
The service supports analysis of a broad range of file sizes and types, plus multiple operating systems. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient or protocol. In addition, administrators can manually submit files to the cloud service for analysis.
- Blocks until verdict
To prevent potentially malicious files from entering the network, files sent to the cloud service for analysis can be held at the gateway until a verdict is determined.