Sophos Central Intercept X Advanced for Server with EDR
Next-Generation Anti-Exploit, Anti-Ransomware, and Root Cause Analysis
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 5 or greater.
More pricing below, click here!
Please Note: All prices displayed are Ex-VAT. 20% VAT is added during the checkout process.
Overview:
Intelligent Endpoint Detection and Response
Sophos Intercept X Advanced with EDR integrates intelligent endpoint detection and response (EDR) with the industry's top-rated malware detection, top-rated exploit protection, and other unmatched endpoint protection features.
Highlights
- EDR combined with the strongest endpoint protection
- Deep Learning Malware Analysis
- On-demand curated threat intelligence from SophosLabs
- Machine learning detection and prioritization of suspicious events*
- Guided investigations make EDR approachable yet powerful
- Respond to incidents with a single click
EDR Starts with the Strongest Protection
To stop breaches before they start, prevention is crucial. Intercept X consolidates unmatched protection and endpoint detection and response into a single solution. This means that most threats are stopped before they can ever cause damage, and Intercept X Advanced with EDR provides additional cybersecurity assurance with the ability to detect, investigate, and respond to potential security threats.
The inclusion of EDR into a consistently top-rated endpoint protection suite enables Intercept X to significantly lighten the EDR workload. The more threats that are prevented, the less noise that is created for security teams to investigate. This means teams can optimize key resources enabling them to focus on the business of IT rather than chasing false positives and an overwhelming volume of alerts.
Add Expertise, Not Headcount
Intercept X Advanced with EDR replicates the tasks normally performed by skilled analysts, so organizations can add expertise without having to add staff. Unlike other EDR solutions which rely on highly skilled human analysts to ask questions and interpret data, Intercept X Advanced with EDR is powered by machine learning and enhanced with curated SophosLabs threat intelligence.
Security expertise*: Intercept X Advanced with EDR puts security expertise into the hands of IT by automatically detecting and prioritizing potential threats. Using machine learning, suspicious events are identified and elevated as the most important and in need of immediate attention. Analysts can quickly see where to focus their attention and understand which machines may be impacted.
Malware expertise: Most organization rely on malware experts that specialize in reverse engineering to analyze suspicious files. Not only is this approach time consuming and difficult to achieve, but it assumes a level of cybersecurity sophistication which most organizations don't possess. Intercept X Advanced with EDR offers a better approach by leveraging Deep Learning Malware Analysis which automatically analyzes malware in extreme detail, breaking down file attributes and code and comparing them to millions of other files. Analysts can easily see which attributes and code segments are similar to "known-good" and "known bad" files so they can determine if a file should be blocked or allowed.
Threat intelligence expertise: When Intercept X Advanced with EDR elevates a potentially suspicious file, IT administrators can gather more information by accessing on-demand threat intelligence curated by SophosLabs which receives and processes approximately 400,000 previously unseen malware samples each day. This, and other threat intelligence is collected, aggregated, and summarized for easy analysis. This means that teams that do not have dedicated threat intelligence analysts, or access to expensive and hard to understand threat feeds, can benefit from one of the top cybersecurity research and data science teams in the world.
Guided Incident Response
Intercept X Advanced with EDR allows administrators to answer the tough questions about security incidents by providing visibility into the scope of an attack, how it started, what was impacted, and how to respond. Security teams of all skill levels can quickly understand their security posture thanks to guided investigations which offer suggested next steps, clear visual attack representations, and built-in expertise.
When an investigation is concluded, analysts can respond with a click of a button. Rapid response options include the ability to isolate endpoints for immediate remediation, clean and block files, and create forensic snapshots.
Intelligent EDR Use Cases
Intelligent endpoint detection and response means that security teams have the visibility and expertise they need to answer the tough questions that are asked as part of an incident response effort.
Answer the tough questions about an incident:
- Understand the scope and impact of security incidents
- Detect attacks that may have gone unnoticed
- Search for indicators of compromise across the network
- Prioritize events for further investigation
- Analyze files to determine if they are a threat or potentially unwanted
- Confidently report on your organization's security posture at any given moment
Beyond EDR
To stop the widest range of threats, Intercept X Advanced with EDR employs a comprehensive defense-in-depth approach to endpoint protection rather than simply relying on one primary security technique. This is the "the power of the plus" - a combination of leading foundational and modern techniques. Intercept X Advanced with EDR integrates the industry's top-rated malware detection, toprated exploit protection, and intelligent endpoint detection and response (EDR).
Modern techniques include deep learning malware detection, exploit prevention, and anti-ransomware specific features. Foundational techniques include antivirus, behavior analysis, malicious traffic detection, data loss prevention, and more.
Intercept X Advanced with EDR combines endpoint detection and response capabilities with the modern features in Intercept X and the foundational techniques in Sophos Central Endpoint Protection. This is delivered as a single solution, in a single agent.
Sophos Intercept X Advanced with EDR |
Sophos Intercept X Advanced |
Sophos Intercept X | Sophos Endpoint Protection |
|
---|---|---|---|---|
Foundational techniques | ||||
Deep learning | ||||
Anti-exploit | ||||
CryptoGuard anti-ransomware | ||||
Endpoint detection and response (EDR) |
* Available early 2019
What's New:
Start with the strongest protection:
Consolidate protection and EDR into a single solution
Add expertise, not headcount:
Built-in machine learning and threat intelligence from SophosLabs
Guided incident response:
Understand your security posture and respond with the click of a button
With Intercept X Advanced with EDR organizations can now understand the scope and impact of security incidents, detect attacks that may have gone unnoticed, analyze files to determine if they are a threat, and confidently report on their organization's security posture at any given moment.
Features:
Details of features included in Intercept X. Intercept X Advanced also includes features from Sophos Central Endpoint Protection.
Features |
---|
EXPLOIT PREVENTION |
Enforce Data Execution Prevention |
Mandatory Address Space Layout Randomization |
Bottom-up ASLR |
Null Page (Null Deference Protection) |
Heap Spray Allocation |
Dynamic Heap Spray |
Stack Pivot |
Stack Exec (MemProt) |
Stack-based ROP Mitigations (Caller) |
Branch-based ROP Mitigations |
Structured Exception Handler Overwrite (SEHOP) |
Import Address Table Filtering (IAF) |
Load Library |
Reflective DLL Injection |
Shellcode |
VBScript God Mode |
Wow64 |
Syscall |
Hollow Process |
DLL Hijacking |
Squiblydoo Applocker Bypass |
APC Protection (Double Pulsar / AtomBombing) |
Process Privilege Escalation |
ACTIVE ADVERSARY MITIGATIONS |
Credential Theft Protection |
Code Cave Mitigation |
Man-in-the-Browser Protection (Safe Browsing) |
Malicious Traffic Detection |
Meterpreter Shell Detection |
ANTIRANSOMWARE |
Ransomware File Protection (CryptoGuard) |
Automatic file recovery (CryptoGuard) |
Disk and Boot Record Protection (WipeGuard) |
APPLICATION LOCKDOWN |
Web Browsers (including HTA) |
Web Browser Plugins |
Java |
Media Applications |
Office Applications |
DEEP LEARNING |
Deep Learning Malware Detection |
Deep Learning Potentially Unwanted Applications (PUA) Blocking |
False Positive Suppression |
Live Protection |
RESPOND INVESTIGATE REMOVE |
Root Cause Analysis |
Sophos Clean |
Synchronized Security Heartbeat |
ENDPOINT DETECTION AND RESPONSE (EDR) |
Cross Estate Threat Searching |
Guided Investigations |
EDR Deep Learning Malware Analysis |
On-demand SophosLabs Threat Intelligence |
Forensic Data Export |
Endpoint Isolation |
DEPLOYMENT |
Can run as standalone agent |
Can run alongside existing antivirus |
Can run as component of existing Sophos Endpoint agent |
Windows 7 |
Windows 8 |
Windows 8.1 |
Windows 10 |
macOS* |
* Features supported CryptoGuard, Malicious Traffic Detection, Synchronized Security Heartbeat, Root Cause Analysis
Intercept X Tech Specs:
CENTRAL ENDPOINT |
INTERCEPT X | INTERCEPT X ADVANCED |
INTERCEPT X ADVANCED WITH EDR |
|
---|---|---|---|---|
ATTACK SURFACE REDUCTION | ||||
Web Security | ||||
Download Reputation | ||||
Web Control / Category-based URL Blocking | ||||
Peripheral Control (e.g. USB) | ||||
Application Control | ||||
BEFORE IT RUNS ON DEVICE | ||||
Deep Learning Malware Detection | ||||
Anti-Malware File Scanning | ||||
Live Protection | ||||
Pre-execution Behavior Analysis (HIPS) | ||||
Potentially Unwanted Application (PUA) Blocking | ||||
STOP RUNNING THREAT | ||||
Data Loss Prevention | ||||
Exploit Prevention | ||||
Runtime Behavior Analysis (HIPS) | ||||
Malicious Traffic Detection (MTD) | ||||
Active Adversary Mitigations | ||||
Ransomware File Protection (CryptoGuard) | ||||
Disk and Boot Record Protection (WipeGuard) | ||||
Man-in-the-Browser Protection (Safe Browsing) | ||||
Enhanced Application Lockdown | ||||
DETECT | ||||
Cross Estate Threat Searching | ||||
Suspicious Events Detection and Prioritization (coming in 2019) | ||||
INVESTIGATE | ||||
Threat Cases (Root Cause Analysis) | ||||
EDR Deep Learning Malware Analysis | ||||
Advanced On-demand SophosLabs Threat Intelligence | ||||
Forensic Data Export | ||||
REMEDIATE | ||||
Automated Malware Removal | ||||
Synchronized Security Heartbeat | ||||
Sophos Clean | ||||
On-demand SophosLabs Threat Intelligence | ||||
Single-click "Clean and Block" |
*Not all features are supported on all operating systems
Documentation:
Download the Central Intercept X Advanced with EDR Datasheet (PDF).
Download the Intercept X & Central Endpoint Protection Overview (PDF).
Pricing Notes:
- All prices displayed are Ex-VAT. 20% VAT is added during the checkout process.
- Pricing and product availability subject to change without notice.
- Full Endpoint Agent and Sophos for Virtual Environments light agent cannot be deployed on the same computer.
Includes choice of:
- Endpoint Agent: (Windows/macOS) Anti-malware, Live Protection, Web Security, Web Control, Malware Removal, Peripheral Control, Application Control, Synchronized Security Heartbeat (Windows only) Behaviour Analysis/HIPS, Data Loss Prevention, Download Reputation, Malicious Traffic Detection, Exploit Prevention, Cryptoguard Anti-Ransomware, Sophos Clean, Root Cause Analysis.
- Sophos for Virtual Environments, Light Agent off-board scanning: (Windows Desktop VMs) Anti-malware, Live Protection, Malware Removal
- * Security Heartbeat functionality is available when Endpoint Advanced is used in conjunction with one of the following Sophos Firewall subscriptions - Network Protection, FullGuard or EnterpriseGuard.
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 10 or greater.
*Price per license. Quantity must be 10 or greater.
*Price per license. Quantity must be 10 or greater.
*Price per license. Quantity must be 25 or greater.
*Price per license. Quantity must be 25 or greater.
*Price per license. Quantity must be 25 or greater.
*Price per license. Quantity must be 50 or greater.
*Price per license. Quantity must be 50 or greater.
*Price per license. Quantity must be 50 or greater.
*Price per license. Quantity must be 100 or greater.
*Price per license. Quantity must be 100 or greater.
*Price per license. Quantity must be 100 or greater.
*Price per license. Quantity must be 1000 or greater.
*Price per license. Quantity must be 1000 or greater.
*Price per license. Quantity must be 1000 or greater.
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 5 or greater.
*Price per license. Quantity must be 10 or greater.
*Price per license. Quantity must be 10 or greater.
*Price per license. Quantity must be 10 or greater.
*Price per license. Quantity must be 25 or greater.
*Price per license. Quantity must be 25 or greater.
*Price per license. Quantity must be 25 or greater.
*Price per license. Quantity must be 50 or greater.
*Price per license. Quantity must be 50 or greater.
*Price per license. Quantity must be 50 or greater.
*Price per license. Quantity must be 100 or greater.
*Price per license. Quantity must be 100 or greater.
*Price per license. Quantity must be 100 or greater.
*Price per license. Quantity must be 1000 or greater.
*Price per license. Quantity must be 1000 or greater.
*Price per license. Quantity must be 1000 or greater.
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 10 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 25 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 50 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote
*Price per license. Quantity must be 100 or greater.
Our Price: Request a Quote