Allows to see the malware from the inside
tLab system is a perspective product on defense from a new type of cyber threats, against which a typical antivirus is insufficiently effective: from zero-day attacks, targeted malicious software (malware) and APT attacks.
Full automation of malware analysis
Deep analysis of malicious behavior, allowing detection of complex and hidden attacks
Fast verdict generation on the basis of an interactive report that allows to see the malware from the inside
Protection against nearly invisible attacks
Advanced user emulation (malware detonation)
Deployment and integration
As the Mail Gateway, two solutions are used to choose from: our MTA server or a plug-in for the MS Exchange mail server. As a Web Gateway, a reliable open-source solution is used, which is a full-fledged Next Generation Firewall (NGFW) with a wide range of functionality.
These solutions analyze each attached file in the sandbox and, if threatened, cut dangerous files from the message. It is possible to check a group of files in one environment to detect component, distributed attacks. The tLab system has Context Document Reconstruction technology, which allows you to create a secure copy of any document for its replacement during the analysis. This allows you to verify documents in detail without violating the business processes of the client.TLab updates occur regularly and include: YARA semantic signatures (exploits), third-party / client antivirus signatures, white sheets, malicious behavior patterns, virtual machine images, and new threat detection and identification mechanisms.