Cisco AMP Threat Grid 5500 - Security appliance - 2 ports - 10GbE - 1U - rack-mountable
- Provides a safe environment
- On-premises appliance
- Advanced analytics
- Advanced behavioral indicators
- Threat score
An AMP Threat Grid appliance delivers on-premises advanced malware analysis with deep threat analytics and content. Organizations with compliance and policy restrictions can analyze malware locally by submitting samples to the appliance.
With an AMP Threat Grid appliance you can analyze all samples using proprietary and highly secure static and dynamic analysis techniques. It correlates the results with hundreds of millions of other analyzed malware artifacts to provide a global view of malware attacks, campaigns, and their distribution. Security teams can quickly correlate a single sample of observed activity and characteristics against millions of other samples to fully understand its behaviors in a historical and global context. This ability helps you effectively defend against both targeted attacks and threats from advanced malware. AMP Threat Grid's detailed reports, including the identification of important behavioral indicators and the assignment of threat scores, let you quickly prioritize and recover from advanced attacks.
-
Provides a safe environment
Glovebox is a user interaction tool that provides a safe environment to dissect malware without the risk of infecting your network. Built into the appliance, analysts are able to interact with the sample while it is being analyzed including opening applications, clicking through dialog boxes, and even reboot the virtual machine if needed.
-
On-premises appliance
Provides safe and highly secure on-premises static and dynamic malware analysis to maintain the confidentiality of data. Easily integrates with existing security infrastructure. Provides safe on-premises storage of malware analysis results.
-
Advanced analytics
Delivers comprehensive security insight into malware behavior and direct links to the sample source and associated behavior in AMP Threat Grid's extensive database. Provides easy access to all information and analysis results for further investigation.
-
Advanced behavioral indicators
Analyzes more than 450 highly accurate and actionable advanced behavioral indicators with few false positives. Produces comprehensive indicators through advanced static and dynamic analysis encompassing numerous malware families and malicious behaviors. Delivers the broadest context around threats and helps you make quick and confident decisions.
-
Threat score
Automatically derives threat scores from proprietary analysis and algorithms that consider the confidence and severity of observed actions, historical data, frequency, and clustering indicators and samples. Prioritizes threats with confidence to reflect each sample's level of malicious behavior. Improves the prioritization of threats, which enhances the efficiency and accuracy of malware analysts, incident responders, security engineering teams, and products that consume AMP Threat Grid's feeds.
