Cb Protection can identify new files and send them for additional inspection through Fortinet FortiSandbox in order to uncover the most sophisticated attacks.
The Cb Protection continuously monitors and records all activity on servers and endpoints to detect and stop cyberthreats that evade traditional security defenses. It can identify new, apparently benign, files for additional inspection by Fortinet FortiSandbox in order to uncover the most sophisticated attacks.
Integrating Cb Protection with Fortinet FortiSandbox delivers a certified and independently top-rated advanced threat protection solution from the network edge through endpoints and servers.
- New files received on endpoints that have Cb Protection can be sent to FortiSandbox for analysis and receive a rating in return.
- Regardless of how a file is submitted to FortiSandbox (directly off the wire, from FortiGate, FortiMail, FortiWeb, FortiClient or Cb Protection), Carbon Black can check/report on the historical log to see which endpoints received a certain file (with a risk rating).
- In addition, Carbon Black can be configured to automatically enforce a local (one device) or global (all devices) ban on files flagged as a risk by FortiSandbox.