Advanced multi-engine threat analysis
SonicWall Capture ATP Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic and detects and blocks intrusions and known malware. Suspicious files are sent to SonicWall Capture ATP Cloud for analysis. The multi-engine platform, including RTDMI, virtualized sandbox, full system emulation, and hypervisor-level scanning technology, executes suspicious code and analyzes behavior, provides complete visibility into malicious activity, while resisting evasion tactics and maximizing security. detection of zero-day threats.
|
Real-time deep memory inspection (RTDMI)
Enhancing SonicWall’s Capture ATP multi-engine service is our patent-pending real-time deep memory inspection technology. The RTDMI engine proactively detects and blocks mass market, zero-day threats, and unknown malware by inspecting directly in memory. Due to the real-time architecture, SonicWall RTDMI technology is accurate, minimizes false positives, and identifies and mitigates sophisticated attacks
|
Broad file type analysis
The service supports scanning of a wide range of file sizes and types, including executable programs (PE), DLLs, PDFs, MS Office documents, archives, JARs, and APKs, as well as multiple operating systems including Windows and Android. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient, or protocol. Additionally, administrators can manually submit files to the cloud service for analysis.
|
There are no reviews yet.