Get a Full-system Emulation Sandbox for Accurate Threat Analysis
Unique isolation and inspection environment that emulates an entire host.
Automatic deconstruction of every behavior to determine maliciousness.
Interactive real-time threat intelligence dashboard streamlines threat hunting.
Deep content inspection for 150+ file types—from .asc to .zip.
Network Sandbox for East-West Traffic
Deliver a distributed network sandboxing capability for malware analysis of east-west network traffic as a part of NSX Distributed Firewall, even when the malicious objects are embedded inside encrypted traffic.
Network Sandbox Throughout the Network
Leverage NSX Sandbox to provide sandboxing at other points in the network via NSX Gateway Firewall and NSX NDR.
We begin every instance of malware analysis by sending the file to NSX Sandbox. If we see something interesting, we then dig in as deep as we can.
Frequently Asked Questions
NSX Sandbox is unique in its ability to do full system emulation. Full system emulation (FUSE) sandboxes emulate the entire hardware: CPU, memory, and I/O devices. FUSE allows the sandbox to interact with the malware and conduct "Deep Content Inspection." This enables the sandbox to view everything the malware is doing and lets analysts carefully study its operation. Because it emulates everything, it is much more difficult for cybercriminals to evade the sandbox.
NSX Sandbox behavior-based detection interacts with the running program and looks at the actions that the program is attempting to take. If the program is trying to do things that appear to be malicious, the behavior-based detection solution will trigger and either the user will be prompted with a notice or the item will be automatically quarantined. Behavior-based sandboxes can detect malware that implement minor changes to evade matches against existing signatures, thereby avoid detection by signature-based systems. Behavior-based sandboxes also detect completely new types of malicious programs that have not been seen before.
NSX Sandbox supports more than 150 file types. Click here for more information.