sangfor
Advanced Endpoint Security Solution
Sangfor Endpoint Secure utilizes a different approach to defending systems from malware and APT threats compared to current next-generation Anti-virus (NGAV) or endpoint detection & response (EDR) solutions.
Endpoint Secure provides a holistic response to malware infections and APT breaches across the entire organization’s network, with ease of management, operation, and maintenance. The solution is scalable to meet the needs of any organization needing on-premise management, cloud management, or a hybrid solution when it comes to endpoint security, protection, detection, and response.
Sangfor's Endpoint Security Overview
Pre-Attack
Prevention
Endpoint Discovery & Unified Endpoint Management
Vulnerability & Patch Management
Configuration Baseline Check
During Attack
Passive Detection
Signature-Based Detection (Traditional AV)
Behavior-Based Detection (NG-AV)
AI & Machine Learning (NG-AV)
Sandboxing (NG-AV)
Active Protection
Micro-Segmentation
Ransomware Honeypot
Two-Factor Authentication
Brute-Force Attack Detection
Post-Attack
Residual Threat Detection
Threat Hunting
Forensic Analysis
Threat Correlation & Visualization
Sangfor Endpoint Secure Key Capabilities
Phishing and web intrusion protection with automated response
- Enhanced protection against phishing and web intrusion attacks to counter the rising number of incidents worldwide.
- Accurate detection of phishing and web intrusion attacks, with detailed insights, including a comprehensive visual kill chain to pinpoint the origin and associated behaviors of the attack.
- Users can configure Sangfor Endpoint Secure to respond automatically to such attacks, such as terminating malicious processes and deleting malicious files to prevent lateral movement.
Ransomware Protection and Recovery
- Protects against all types of ransomware through static and dynamic AI-based detection engines.
- Detects suspicious ransomware-related processes and blocks them in as little as 3 seconds to ensure minimal impact on users’ assets.
- Ransomware indicators of compromise are collected from over 12 million devices deployed with Sangfor Endpoint Secure, allowing it to achieve a detection accuracy rate of 99.83%.
- In addition to existing ransomware protections, such as honeypot and RDP two-factor authentication, Sangfor Endpoint Secure provides ransomware recovery capabilities. These include file recovery and recovery via Windows Volume Shadow Copy Service (VSS) snapshot backup to fully secure and restore your data in case of ransomware encryption.
Synergy with Network and Cloud
Endpoint Secure integrates with Sangfor NGAF, IAG, and Cyber Command to enable advanced and coordinated threat detection and response. Threat correlation between endpoint, network, and cloud makes it possible to detect sophisticated threats that are missed by point solutions and produce an integrated evidence chain to streamline post-attack threat hunting and weakness remediation.
Reach us on WhatsApp