Intercept X 技术规格

Intercept X 可用于运行 32 位或 64 位 Windows 7 及更高版本以及 macOS 的设备。Intercept X 是行业最全面的端点保护产品,可阻止最广泛的威胁。Intercept X Advanced 将 Intercept X 与 Central Endpoint 的功能组合在一个解决方案,一个客户端中。Intercept X Advanced with EDR 还集成了智能端点侦测与响应 (EDR)。通过我们的统一控制台 Sophos Central 管理。无需搭建服务器—只需登录后下载代理,从一个地方配置所有策略。

如需了解更多信息,请查阅 Sophos Intercept X 数据表Sophos Intercept X Advanced with EDR 数据表

访问Sophos 社区了解Sophos所有产品系统要求。

下面列出的功能全部包含在 Sophos Intercept X Advanced with EDR 中。

产品特点
EXPLOIT PREVENTION 漏洞利用防御
Enforce Data Execution Prevention
Mandatory Address Space Layout Randomization 
Bottom-up ASLR 
Null Page (Null Deference Protection) 
Heap Spray Allocation 
Dynamic Heap Spray 
Stack Pivot 
Stack Exec (MemProt) 
Stack-based ROP Mitigations (Caller) 
Branch-based ROP Mitigations
Structured Exception Handler Overwrite (SEHOP)
Import Address Table Filtering (IAF) 
Load Library 
Reflective DLL Injection 
Shellcode 
VBScript God Mode 
Wow64 
Syscall 
Hollow Process 
DLL Hijacking 
Squiblydoo Applocker Bypass 
APC Protection (Double Pulsar / AtomBombing)
Process Privilege Escalation
ACTIVE ADVERSARY MITIGATIONS 主动攻击减缓
Credential Theft Protection 
Code Cave Mitigation
Man-in-the-Browser Protection (Safe Browsing) 
Malicious Traffic Detection
Meterpreter Shell Detection
ANTIRANSOMWARE 防勒索软件
Ransomware File Protection (CryptoGuard) 
Automatic file recovery (CryptoGuard)
Disk and Boot Record Protection (WipeGuard)
APPLICATION LOCKDOWN 应用程序锁定
Web Browsers (including HTA) 
Web Browser Plugins
Java 
Media Applications 
Office Applications
DEEP LEARNING 深入学习
Deep Learning Malware Detection
Deep Learning Potentially Unwanted
Applications (PUA) Blocking
False Positive Suppression
Live Protection
应对 调查 移除
Root Cause Analysis
Sophos Clean
Synchronized Security Heartbeat
ENDPOINT DETECTION AND RESPONSE (EDR) 端点侦测与响应
Cross Estate Threat Searching
Guided Investigations
EDR Deep Learning Malware Analysis
On-demand SophosLabs Threat Intelligence
Forensic Data Export
Endpoint Isolation
DEPLOYMENT 部署
可作为独立代理运行
可随现有防病毒程序运行
可作为现有
Sophos Endpoint 代理组件运行
Windows 7
Windows 8
Windows 8.1
Windows 10
macOS*

* 功能支持 CryptoGuard、恶意流量检测、同步安全心跳、根本原因分析

CENTRAL ENDPOINT INTERCEPT X方案 INTERCEPT X ADVANCED INTERCEPT X ADVANCED WITH EDR
ATTACK SURFACE REDUCTION 减少攻击表面
Web Security
Download Reputation
Web Control / Category-based URL Blocking
Peripheral Control
(e.g. USB)
Application Control
BEFORE IT RUNS ON DEVICE 在设备上运行前
Deep Learning Malware Detection
Anti-Malware File Scanning
Live Protection
Pre-execution Behavior Analysis (HIPS)
Potentially Unwanted Application (PUA) Blocking
Data Loss Prevention
Exploit Prevention
STOP RUNNING THREAT 阻止威胁的运行
Runtime Behavior Analysis (HIPS)
Malicious Traffic Detection (MTD)
Active Adversary Mitigations
Ransomware File Protection (CryptoGuard)
Disk and Boot Record Protection (WipeGuard)
Man-in-the-Browser Protection (Safe Browsing)
INVESTIGATE AND REMOVE 调查并移除
Automated Malware Removal
Synchronized Security Heartbeat
Root Cause Analysis
Sophos Clean
Cross Estate Threat Searching
Guided Investigations
EDR Deep Learning Malware Analysis
On-demand SophosLabs Threat Intelligence
Forensic Data Export
Endpoint Isolation

*不是所有操作系统都支持所有功能