Produktbeskrivning

SonicWall Capture Client is a unified endpoint offering with multiple protection capabilities. With a next-generation malware protection engine powered by SentinelOne, Capture Client applies advanced threat protection techniques, such as machine learning, network sandbox integration, and system rollback. Capture Client also leverages the deep inspection of encrypted TLS traffic (DPI-SSL) on SonicWall firewalls by installing and managing trusted TLS certificates.

Capture Client co-exists with the SonicWall Content Filtering Client and the SonicWall Global VPN Client. Policies for all products can be managed from a single cloud-based management console. Capture Client can be easily added to any client deployed either through Microsoft Active Directory group policies or any other third-party software deployment techniques; or through the delivery of customized URLs where clients can download and silently self-install without any additional intervention. And, when integrated with SonicWall firewalls, Capture Client delivers a zero-touch silent experience for deployment on unprotected clients.

 

Egenskaper

Continuous behavioral monitoring
Continuous behavioral monitoring of the client helps create a complete profile of file activity, application and process activity, and network activity. This allows for protection against both file-based and file-less malware and delivers a 360-degree attack view with actionable intelligence relevant for investigations.

Multiple layered, heuristic-based techniques
Multiple layered, heuristic-based techniques for protection include cloud intelligence, advanced static analysis and dynamic behavioral protection. These help protect against and remediate known and unknown malware.

No need for regular scans or periodic updates
No need for regular scans or periodic updates enables the highest level of protection at all times without hampering user productivity.

Capture Advanced Threat Protection (ATP) integration
Capture Advanced Threat Protection (ATP) integration automatically uploads suspicious files for advanced analysis through code manipulation that endpoints can't perform. Stop more threats before they execute such as malware with built-in timing delays. Administrators can also reference Capture ATP's database of file verdicts without the need to upload files to the cloud for analysis.

Unique rollback capabilities
Unique rollback capabilities also support policies that not only remove the threat completely but also restore a targeted client to the state before the malware activity initiated. This eliminates the need for manual restoration in the case of ransomware and similar attacks on Windows.

Cloud-based management console
Cloud-based management console reduces the footprint and overhead of management. It also improves the ability to deploy and enforce endpoint protection, wherever the endpoint is.

Integration with the SonicWall next-generation firewalls
Integration with the SonicWall next-generation firewalls delivers zero-touch deployment and enhanced endpoint compliance. Plus it enables enforcement of deep packet inspection of encrypted traffic (DPI-SSL) by deploying trusted certificates to each endpoint.