Endpoint Protection
and Threat Prevention

Today’s borderless networks are redefining endpoint protection. With a variety of endpoints freely accessing networks, they’re storing sensitive corporate data. Because 70 percent of successful data breaches start on endpoints,1  a preventative approach to endpoint security can help stop cyber attacks. SandBlast Agent is the advanced endpoint protection and threat prevention solution to protect your organization.

1 “Cybercrime: The Credential Connection,” IDC

Endpoint and Threat Protection: SandBlast Agent monitor image

Webinar: "Endpoints at the Edge: The Stakes are Rising"

Innovative Technology icon

Innovative Threat Prevention Technologies

Uses static, dynamic, and behavioral detection and prevention technologies with advanced artificial intelligence to provide high catch rates and low false positives

Detect Response icon

Insightful Detection and Response

Assures continuous collection of comprehensive and complete raw forensics data, employing full attack remediation capabilities

Complete Solution icon

Complete Endpoint Security Solution

Integrates into Check Point Infinity to get maximum prevention across all attack surfaces, shared intelligence, and a single point of management (cloud service or on premise)

Forrester Research Names Check Point a Leader in Endpoint Security Suites

Key Product Benefits

  • Mature endpoint capabilities to protect against known and unknown cyberattacks
  • Industry best practices elevate endpoint security to combat targeted and evasive attacks
  • High catch rates and low false positives ensure efficient security efficacy and effective prevention
  • Automated forensics data analysis offers detailed insights into threats
  • Full attack containment and remediation quickly restore any infected systems

SandBlast Agent Features

SandBlast Agent is a complete endpoint security solution offering a fleet of advanced endpoint threat prevention capabilities so you can safely navigate today’s menacing threat landscape.

It provides a comprehensive system to proactively prevent, detect, and remediate evasive malware attacks.

SandBlast Agent Endpoint and Threat Protection: Complete Endpoint Security Solution feature capabilities diagram
SandBlast Agent Endpoint and Threat Protection: Threat Emulation screen capture
Threat Emulation

Evasion-resistant sandbox technology detects malicious behavior and prevents potential attacks

SandBlast Agent Endpoint and Threat Protection: Threat Extraction screen capture
Threat Extraction

Reconstructs downloaded files, delivering clean, risk-free files to users in real time

SandBlast Agent Endpoint and Threat Protection: Anti-Exploit screen capture
Anti-Exploit

Protects and prevents vulnerable applications and systems from exploit attacks

SandBlast Agent Endpoint and Threat Protection: Anti-Bot screen capture
Anti-Bot

Detects, contains, and remediates infected hosts

SandBlast Agent Endpoint and Threat Protection: Zero-Phising screen capture
Zero-Phishing

Blocks deceptive phishing sites and alerts on password reuse in real time

SandBlast Agent Endpoint and Threat Protection: Behavioral Guard screen capture
Behavioral Guard

Prevents, detects, and remediates even the most evasive attacks

SandBlast Agent Endpoint and Threat Protection: Anti-Ransomware screen capture
Anti-Ransomware

Detects and quarantines the most evasive ransomware variants

SandBlast Agent Endpoint and Threat Protection: Forensics screen capture
Forensics

Records and analyzes all endpoint events to provide actionable attack forensic report

Additional Features

Protects endpoints from known viruses, worms, and Trojan horse malware and it serves as the baseline endpoint threat prevention engine against known attacks using signature and heuristics.

Combines pre-boot protection, boot authentication, and strong encryption to make sure that only authorized users are given access to information stored on desktops and laptops.

Protects data stored on the computers by encrypting removable media devices and allowing tight control over computers’ ports (USB, Bluetooth, and so on).

Provides secure, seamless, and remote access to corporate networks.

Stops unwanted traffic, prevents malware, and blocks targeted attacks, ensuring protected computers comply with security requirements; assigns different security levels according to the compliance state of the endpoint computer.

Cloud Management or On-premise

SandBlast Agent offers unified, scalable, and granular management available as a cloud service or installed on your premise.

  • Unified – Manage all your endpoint security needs from a single console
  • Scalable – Use one management infrastructure to manage your endpoints, from a few to hundreds of thousand devices
  • Granular – Choose the management granularity that fits your needs. Relay product best practices based on defaults; go deeper by configuring everything on your system, or anywhere in between


SandBlast Agent cloud management service is fully deployed,maintained, and optimized by Check Point enabling rapid deployment, elastic growth, continuous updates and location independent.

SandBlast Agent Options and Specifications

Features
Data
Protection
Basic
Advanced
Complete
Unified Endpoint Security
Advanced
Unified Endpoint Security
Complete
Deployment
Agent
Browser Extension
Mobile App
Reduce Attack Surface
Endpoint Firewall
Application Control
Endpoint Compliance
Port Protection (Peripheral control)
Remote Access VPN
Data Protection: Full disk and removable storage encryption
Prevent Attacks Before They Run
Endpoint Anti-Virus: Known signatures, heuristics
Static Analysis: Machine learning-based prevention
Anti-Exploit
Zero-Phishing: Anti-phishing, credentials reuse prevention
Threat Emulation (SandBox)
Threat Extraction (Document sanitization)
Runtime Detection and Protection
Anti-Ransomware
Behavioral Guard: Mutations of known malware, generic unknown malware
Behavioral Guard: File-less attacks
Anti-Bot: Malicious Command and Control (C&C) traffic detection
Anti-Evasion: Evasion techniques detection
Contain and Remediate
Block traffic to Command and Control (C&C) servers
Lateral movement prevention and infected machine isolation
Process termination and file quarantine
Encrypted file restoration
Full attack chain sterilization
Attack Investigation and Response (EDR)
Forensics collection
Automated event forensics analysis report
Threat hunting
Multi-surface attack immunization (IoC and IoA sharing)
Cloud Management
SandBlast Mobile (iOS and Android threat prevention)
SandBlast Agent Endpoint and Threat Protection: NSS Recommended logo - 100% Block Rate and Zero False Positives

SandBlast Agent earns NSS "Recommended" status in Advanced Endpoint Protection (AEP) test

This marks our 18th overall NSS recommended rating since 2010. AEP Test Highlights:
  • 100% HTTP block rate
  • 100% Email block rate
  • 100% Offline threats block rate
  • 100% Evasions block rate
  • 0% False positives

Unified Security Infrastructure

SandBlast Agent is a core product of Check Point Infinity, a fully consolidated cyber security architecture providing unprecedented protection against Gen V mega-cyberattacks across network, endpoint, cloud, and mobile. The architecture is designed to resolve the complexities of growing connectivity and inefficient security.

Start your SandBlast Agent proof-of-concept today.

Mississippi State Seal

“The anti-ransomware blade is an amazing piece of technology. Not only does it protect you from ransomware but it doesn’t rely on signatures to do it. That means that even if you lose your internet connection you are still protected from unknown variants”

-Russell Walker, Chief Technology Officer, Mississippi Secretary of State.

Try it now

Talk to a specialist

Get pricing

This website uses cookies to ensure you get the best experience. Got it, Thanks! MORE INFO