and Threat Prevention
Innovative Threat Prevention Technologies
Uses static, dynamic, and behavioral detection and prevention technologies with advanced artificial intelligence to provide high catch rates and low false positives
Insightful Detection and Response
Assures continuous collection of comprehensive and complete raw forensics data, employing full attack remediation capabilities
Complete Endpoint Security Solution
Integrates into Check Point Infinity to get maximum prevention across all attack surfaces, shared intelligence, and a single point of management (cloud service or on premise)
SandBlast Agent Features
SandBlast Agent is a complete endpoint security solution offering a fleet of advanced endpoint threat prevention capabilities so you can safely navigate today’s menacing threat landscape.
It provides a comprehensive system to proactively prevent, detect, and remediate evasive malware attacks.
Evasion-resistant sandbox technology detects malicious behavior and prevents potential attacks
Reconstructs downloaded files, delivering clean, risk-free files to users in real time
Protects and prevents vulnerable applications and systems from exploit attacks
Detects, contains, and remediates infected hosts
Blocks deceptive phishing sites and alerts on password reuse in real time
Prevents, detects, and remediates even the most evasive attacks
Detects and quarantines the most evasive ransomware variants
Records and analyzes all endpoint events to provide actionable attack forensic report
Protects endpoints from known viruses, worms, and Trojan horse malware and it serves as the baseline endpoint threat prevention engine against known attacks using signature and heuristics.
Protects data stored on the computers by encrypting removable media devices and allowing tight control over computers’ ports (USB, Bluetooth, and so on).
Provides secure, seamless, and remote access to corporate networks.
Stops unwanted traffic, prevents malware, and blocks targeted attacks, ensuring protected computers comply with security requirements; assigns different security levels according to the compliance state of the endpoint computer.
Cloud Management or On-premise
SandBlast Agent offers unified, scalable, and granular management available as a cloud service or installed on your premise.
- Unified – Manage all your endpoint security needs from a single console
- Scalable – Use one management infrastructure to manage your endpoints, from a few to hundreds of thousand devices
- Granular – Choose the management granularity that fits your needs. Relay product best practices based on defaults; go deeper by configuring everything on your system, or anywhere in between
SandBlast Agent cloud management service is fully deployed,maintained, and optimized by Check Point enabling rapid deployment, elastic growth, continuous updates and location independent.
SandBlast Agent Options and Specifications
Unified Endpoint Security
Unified Endpoint Security
|Reduce Attack Surface|
|Port Protection (Peripheral control)|
|Remote Access VPN|
|Data Protection: Full disk and removable storage encryption|
|Prevent Attacks Before They Run|
|Endpoint Anti-Virus: Known signatures, heuristics|
|Static Analysis: Machine learning-based prevention|
|Zero-Phishing: Anti-phishing, credentials reuse prevention|
|Threat Emulation (SandBox)|
|Threat Extraction (Document sanitization)|
|Runtime Detection and Protection|
|Behavioral Guard: Mutations of known malware, generic unknown malware|
|Behavioral Guard: File-less attacks|
|Anti-Bot: Malicious Command and Control (C&C) traffic detection|
|Anti-Evasion: Evasion techniques detection|
|Contain and Remediate|
|Block traffic to Command and Control (C&C) servers|
|Lateral movement prevention and infected machine isolation|
|Process termination and file quarantine|
|Encrypted file restoration|
|Full attack chain sterilization|
|Attack Investigation and Response (EDR)|
|Automated event forensics analysis report|
|Multi-surface attack immunization (IoC and IoA sharing)|
|SandBlast Mobile (iOS and Android threat prevention)|