Symantec Sandboxing, is a cybersecurity solution specifically designed to detect and analyze unknown, advanced, and targeted malware. The solution leverages a dual-detection approach, providing a safe environment to detonate suspicious files and URLs, revealing their malicious behavior, and uncovering hidden zero-day threats. It forms a crucial part of the Symantec Secure Access Service Edge solution, delivering a scalable, adaptive, and customizable sandbox experience capable of handling enterprise-class, comprehensive malware detonation and analysis.
This advanced sandboxing solution harnesses the power of virtualization and emulation to capture a broader range of malicious behavior across custom environments. It features an Emulation Sandbox, a fully-controlled, replicated PC computing environment that emulates Windows systems to detect otherwise undetectable malware. It also includes a Virtualization Sandbox, custom-tailored to replicate real Windows production environments, to quickly identify anomalies and behavioral differences that reveal advanced evasion techniques. This Virtualization Sandbox can detect anti-analysis, sleep techniques, and other advanced evasion methods. Furthermore, it also offers a virtualized Android sandbox to detect and analyze mobile threats on enterprise networks.
Additionally, Symantec Sandboxing employs an array of detection techniques, combining both static and dynamic analysis. It utilizes standard, custom, and open-source YARA patterns to expose even the most ingeniously disguised malware. This tool can identify packed malware and VM-aware samples that change their behavior in artificial environments, as well as malware that employs short or long sleeps to evade detection during sandbox analysis.
We have not yet collected reviews for Symantec Sandboxing. Share your experience with PeerSpot's community.
Provide a review