To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection (ATP) Service — a cloud-based service available with SonicWall firewalls — detects and can block advanced threats at the gateway until verdict. This service is the only advanced-threat-detection offering that combines multi-layer sandboxing; including SonicWall’s Real-Time Deep Memory Inspection (RTDMI™), full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute-environment specific and susceptible to evasion.

Features And Benefits

Multi-Engine Advanced Threat Analysis
SonicWall Capture ATP Service extends firewall threat protection to detect and prevent zero-day attacks.

Real-Time Deep Memory Inspection (RTDMI)
Enhancing SonicWall’s multi-engine Capture ATP service is our patent-pending Real-Time Deep Memory Inspection technology.

Broad File Type Analysis
The service supports analysis of a broad range of file sizes and types, including executable programs (PE), DLL, PDFs, MS Office documents.

Rapid Deployment of Remediation Signatures
When a file is identified as malicious, a signature is immediately available to firewalls with the SonicWall Capture ATP subscription to prevent follow-on attacks.