SandBlast Threat Extraction
The SandBlast Threat Extraction technology is a capability of SandBlast Network and the SandBlast Agent endpoint protection solutions. It removes exploitable content, reconstructs files to eliminate potential threats, and delivers sanitized content to users in a few seconds to maintain business flow.


Remove Exploitable
Content
Reconstruct files with known safe elements in web-downloaded documents and emails.

Safe Content
Delivery
Immediate delivery of sanitized versions of potentially malicious files to maintain business flow.

Complete Threat
Visibility
Access to original files after background analysis of attack attempts.
SandBlast Threat Extraction Features

Prompt Delivery of Safe Content
SandBlast Network and SandBlast Agent utilize Threat Extraction technology to eliminate threats and promptly deliver safe, sanitized content to its intended destination. Original files are accessible after undergoing background analysis by the Threat Emulation engine.

Protects Common File Types

Easy Deployment and Flexible Protection Options
Installed as an additional software blade on the gateway as part of the SandBlast Network and SandBlast Agent solutions, Threat Extraction is integrated in Mail Transfer Agent-Mode to the email network. It can be applied across the organization, or implemented only for specific individuals, domains, or departments. Administrators can configure included users and groups based upon needs, and can use this to facilitate gradual organizational deployment. Document protection options can be selected depending on operational needs.

Proactive Protection
Traditional detection technologies take time to search for and identify threats before blocking them. Due to unacceptable delays, many solutions are deployed only in detect mode, leaving networks vulnerable to threats. SandBlast Network and SandBlast Agent solutions leverage the Threat Extraction capability to preemptively eliminate delays associated with traditional solutions, reduce risk, and enable real-world deployment in prevent mode.

Extended Protection to Endpoints
