Unlock the value of any cloud and accelerate the delivery of modern applications with VMware Cloud.
Accelerate modern app operations with network and security virtualization for WAN, data center and cloud.
Enable any employee to work anywhere, anytime with seamless employee experiences.
Secure your infrastructure across any app, any cloud and any device.
Explore tailored solutions for your application framework, cloud infrastructure and security architecture.
VMware’s global ecosystem of partners helps enterprises be cloud smart.
Build, run, manage, connect and protect all of your apps, anywhere with a digital foundation built on VMware.
Leverage NSX Sandbox for complete visibility into – and protection against – advanced malware that can evade other defenses.
Gain critical insights into how threats evade perimeter defenses and how VMware is better positioned to secure East-West traffic inside the data center.
Enable analysis of malicious objects used in advanced, targeted, and zero-day attacks, even when the malicious objects are embedded inside encrypted traffic.
Present malware behavior in detailed reports that include all behaviors discovered during analysis. Map malicious activity to the MITRE ATT&CK framework to illuminate the risk associated with each malicious event.
See malware behavior that other technologies miss. VMware includes Deep Content Inspection™ to simulate an entire host (including CPU, system memory, and all devices), interact with malware, and observe all actions malicious objects may take.
Take advantage of VMware’s extensive threat knowledge base. Enable real-time updates of malware characteristics and behaviors for faster detection and analysis of previously unseen threats and accelerated response time to malicious activity.
Unique isolation and inspection environment that emulates an entire host.
Automatic deconstruction of every behavior to determine maliciousness.
Interactive real-time threat intelligence dashboard streamlines threat hunting.
Deep content inspection for 150+ file types—from .asc to .zip.
Deliver a distributed network sandboxing capability for malware analysis of east-west network traffic as a part of NSX Distributed Firewall, even when the malicious objects are embedded inside encrypted traffic.
Leverage NSX Sandbox to provide sandboxing at other points in the network via NSX Gateway Firewall and NSX NDR.
East-West Traffic
Network Sandbox
We begin every instance of malware analysis by sending the file to NSX Sandbox. If we see something interesting, we then dig in as deep as we can.
A new approach to detecting malware with deep learning and continuous training boosts accuracy.
Leverage a solution that layers multiple machine learning algorithms and other types of advanced detection.
Powerful as they are, AI and ML ideally contribute to a synthesis of security information for SOCs.
Layer 7 internal firewall.
AI-powered correlation of events across multiple detection engines.
Signature and behavior based detection of ransomware and other threats at every hop.
Distributed analytics engine for topology visualization & policy recommendations.
A Layer 7 firewall to protect physical servers and zone/cloud edge.
NSX Sandbox is unique in its ability to do full system emulation. Full system emulation (FUSE) sandboxes emulate the entire hardware: CPU, memory, and I/O devices. FUSE allows the sandbox to interact with the malware and conduct "Deep Content Inspection." This enables the sandbox to view everything the malware is doing and lets analysts carefully study its operation. Because it emulates everything, it is much more difficult for cybercriminals to evade the sandbox.
NSX Sandbox behavior-based detection interacts with the running program and looks at the actions that the program is attempting to take. If the program is trying to do things that appear to be malicious, the behavior-based detection solution will trigger and either the user will be prompted with a notice or the item will be automatically quarantined. Behavior-based sandboxes can detect malware that implement minor changes to evade matches against existing signatures, thereby avoid detection by signature-based systems. Behavior-based sandboxes also detect completely new types of malicious programs that have not been seen before.
NSX Sandbox supports more than 150 file types. Click here for more information.
