Match each WatchGuard Subscription Service with its function.
Uses full-system emulation analysis to identify characteristics and behavior of zero-day malware. (Choose one).
Suggested Answer:
I
APT Blocker is intended to stop malware and zero-day threats that are trying to invade an organization's network.
APT Blocker uses a next-gen sandbox to get detailed views into the execution of a malware program. After first running through other security services, files are fingerprinted and checked against an existing database first on the appliance and then in the cloud. If the file has never been seen before, it is analyzed using the system emulator, which monitors the execution of all instructions. It can spot the evasion techniques that other sandboxes miss.
Reference:
http://www.watchguard.com/wgrd-products/security-modules/apt-blocker
Arjjra
1 year, 11 months agoLoCarb_Monster
1 year, 2 months agoEnjoiTech
1 year, 1 month agoSatornjkk
2 months, 2 weeks ago