Hackers try to exploit unmonitored network ports or use a specific network protocol that isn’t being monitored, but Trend Micro™ Deep Discovery™ Inspector provides 360 degrees of visibility by monitoring all network ports and over 105 different protocols. A single Deep Discovery Inspector appliance monitors east-west traffic (also known as lateral movement) and north-south traffic.
Deep Discovery Inspector uses XGen™ security, a blend of cross-generational techniques to ensure the highest detection rate with the lowest false positives:
Unlike other sandbox solutions that use a standard OS and apps template, Deep Discovery uses custom sandboxes. Virtual images are used to match operating system configurations, drivers, installed applications, and language versions. Difficult for hackers to evade, they include a “safe live mode” to analyze multi-stage downloads, URLs, command-and-control (C&C), and more. Sandboxing is offered as part of an integrated appliance or as a scalable, stand-alone capability.
Deep Discovery not only integrates with TippingPoint but also with SIEM solutions (ArcSight, Splunk and QRadar) and firewalls (Palo Alto Networks and Check Point). An open web API allows your organization to integrate Deep Discovery Inspector to any existing security investment, providing defense in depth protection that best meets your needs.