Call us
+44 (0)20 8830 6820

Capture ATP Service

Capture Advanced Threat Protection (CaptureATP / CATP)
A cloud-based multi-engine sandbox that extends firewall threat protection to detect and prevent zero-day threats.

Suspicious files are sent to the cloud for analysis with the option to hold them at the gateway appliance until a verdict is determined. The multi-engine sandbox platform, which includes virtualised sandboxing, full system emulation and hypervisor level analysis technology, executes suspicious code and analyses behavior. When a file is identified as malicious, a hash is immediately created within Capture and later a signature is sent to firewalls to prevent follow-on attacks.

The solution scans traffic and extracts suspicious code for analysis, but unlike other gateway solutions, analyses a broad range of file sizes and types. Global threat intelligence infrastructure rapidly deploys remediation signatures for newly identified threats to all SonicWall network security appliances, thus preventing further infiltration.

A cloud-based, multi-engine solution for stopping unknown and zero-day attacks at the gateway
How does Capture ATP integrate with the other SonicWall service features to prevent ransomeware?

This short video details how the full suite of SonicWall threat prevention mechanisms are used together to keep your networks safe.

SonicWall Capture Labs

The dedicated SonicWall Capture Labs threats research team researches and develops countermeasures to deploy to customer firewalls for up-to-date protection. The team gathers data on potential threat data from several sources including our award-winning network sandboxing service, Capture Advanced Threat Protection, as well as more than 1 million SonicWall sensors located around the globe that monitor traffic for emerging threats. It is analysed via machine learning using SonicWall's Deep Learning Algorithms to extract the DNA from the code to see if it is related to any known forms of malicious code.

SonicWall NGFW customers with the latest security capabilities are provided continuously updated threat protection around the clock. New updates take effect immediately without reboots or interruptions. The signatures on the appliances protect against wide classes of attacks, covering up to tens of thousands of individual threats with a single signature.

Included with AGSS (Gen 6), EPSS & APSS (Gen 7)
Look out for "Total Secure Advanced" in the product title. It indicates that Capture ATP is included in the item. If upgrading from an old or competititor product, look out for "Secure Upgrade Plus".
Key Benefits
  • High security effectiveness against unknown threats
  • Near real-time signature deployment protects from follow on attacks
  • Reduced total cost of ownership
  • Block files at the gateway until verdict
  • Multiple engines process files in parallel for rapid verdicts
  • SonicWall's RTDMI engine blocks unknown mass-market malware utilizing real-time memory-based inspection techniques
File types scanned include
Executable programs, DLL, PDFs, MS Office documents, archives, JAR and APK

Contact Us

Talk to us to get the best solution for your environment, or if you would like to:

  • get advice on the correct feature, appliance or renewal
  • get the BEST quote for an appliance, upgrade or subscription renewal
  • outsource your firewall management, single device or large network
  • arrange configuration from SonicWall accredited engineers

...Or if you just need HELP!

+44(0)20 8830 6820

sales@sonicwallsecurity.co.uk

*
*
*
back to top