Compliance

Allows you to enforce endpoint compliance on multiple checks before users log into the network. You can check that the:

• appropriate endpoint security software blades are installed
• correct OS service pack are installed on the endpoint
• only approved applications are able to run on the endpoint
• appropriate anti-malware product and version is running on the endpoint.

Anti-Malware

Protects clients from known and unknown viruses, worms, Trojan horses, adware, and keystroke loggers.

Media Encryption and Media Encryption & Port Protection

Protects data stored on the computers by encrypting removable media devices and allowing tight control over computers' ports (USB, Bluetooth, and so on).

Firewall and Application Control

Defines the topology of the organizational network, separating it into Trusted and Internet domains.

Blocks or allows network traffic based on attributes of network connections.

Controls network access on a per-application basis, letting you restrict application access by zone and direction.

Full Disk Encryption

Combines Pre-boot protection, boot authentication, and strong encryption to make sure that only authorized users are given access to information stored on desktops and laptops.

Manages:

• How a Full Disk Encryption user logs in to the computer
• How failed logins are handled
• Password security
• Access to remote help

Remote Access VPN

Provide secure, seamless access to corporate networks remotely, over IPsec VPN.

Capsule Docs

Provides security classifications and lets organizations protect and share documents safely with various groups - internal and external.

URL Filtering

Lets organizations control access to web sites by category, user or group.

SandBlast Agent Anti-Bot

Detects bot-infected machines and blocks bot C&C communication to prevent bot damage. Provides detailed information about the device affected by the bot activity, about the bot process itself, and other relevant information.

SandBlast Agent Anti-Ransomware, Behavioral Guard and Forensics

Prevents ransomware attacks. Monitors files and the registry for suspicious processes and network activity. Analyzes incidents reported by other blades.

SandBlast Agent Threat Extraction, Emulation and Anti-Exploit

Threat Extraction quickly delivers safe files while the original files are inspected for potential threats.

Threat Emulation sends files on the endpoint computer to a sandbox for emulation to detect evasive zero-day attacks.

Compliance

Allows you to enforce endpoint compliance on multiple checks before users log into the network. You can check that the:

• appropriate endpoint security software blades are installed
• correct OS service pack are installed on the endpoint
• only approved applications are able to run on the endpoint
• appropriate anti-malware product and version is running on the endpoint.

Media Encryption

Protects data stored on the computers by encrypting removable media devices

Firewall

Defines the topology of the organizational network, separating it into Trusted and Internet domains.

Blocks or allows network traffic based on attributes of network connections.

Native Encryption Management

Combines Pre-boot protection, boot authentication, and strong encryption to make sure that only authorized users are given access to information stored on desktops and laptops.

Manages:

• How a Full Disk Encryption user logs in to the computer
• How failed logins are handled
• Password security
• Access to remote help

Remote Access VPN

Provide secure, seamless access to corporate networks remotely, over IPsec VPN.

Capsule Docs

Provides security classifications and lets organizations protect and share documents safely with various groups - internal and external.

SandBlast Agent Anti-Ransomware

Prevents ransomware attacks.

SandBlast Agent Threat Emulation

Sends files on the endpoint computer to a sandbox for emulation to detect evasive zero-day attacks.