Services

Asterbox is a self-learning platform that enables an organization to simulate threats ranging from APT malware techniques to ransomware and simultaneously suggest defense tactics in order to mitigate the same. .

Test and examine scans the changes in the threat landscape by collecting and processing threat intelligence from numerous sources, including commercial and open-source threat intelligence services, blogs, white papers of security vendors and researchers social media, malware sandboxes, and forums

• Endpoint Security:- Our platforms can check if malware — including viruses, Ransomware — can exist and execute on workstations. This allows you to verify whether your endpoint security solutions (such as EDR, EPP, AV, and NGAV) can detect and prevent the spread of malicious code within your network.
• Web Security:- Our tests can check if malicious domains and files can bypass web security filters and download on your network.
• Email Defenses:- Our tests are designed to evaluate your organization’s email security and potential exposure to several malicious payloads sent to test email filters.
• Perimeter Devices: Our tests are designed to evaluate the firewall and detect incoming malicious traffic.
• Internal Network:- Our platforms simulate scenarios designed to test Blue Team detections and SIEM correlation rules

Scrutiny is an advanced AI-Driven Real-Time Ransomware Detection sensor that helps defend against the full scope of known and unknown zero-day malware which populates ransomware. While especially new Ransomware doesn’t get recognized correctly by many endpoint security applications in time, Scrutiny sensor has a Multi-Stage Detection and background guard that uses sophisticated algorithms to detect the Ransomware behavior patterns and Emergency routine is started to stop the running encryption and to give you valuable information on how to deal with the malware. Plethora of unique features makes our Scrutiny Sensor completely different from traditional anti-ransomware solutions:

Plethora of unique features makes our Scrutiny Sensor completely different from traditional anti-ransomware solutions:

• Ransomware detection is powered by a multi-tier self Learning model without any reliance on signatures or centralized database and guarding files in the background utilizing cutting-edge "Crypto Caging" methodology.
• Multi-layered protection against the latest emerging threats and ransomware
• Certified scalable technology and cross-platform support
• Cloud-delivered real-time threat Intel and private scanning via offline/private APIs.
• A lightweight sensor agent compatible with all endpoint security control (Anti-virus/EDR/DLP)

RIPx is an online-API based anti-malware detection specialized in ransomware detection, it provides a complete multi-dimensional detection service presented as a preview version of our Scrutiny engine and SWATBOX sandbox. It analyzes and collects static and dynamic behavior data of files by simulating the file execution environment and combines with SWATBOX internal threat database to discover unknown threats in seconds. A scan through our engine enables you to identify file names, file hash, IOCs, metadata, file format structural properties, file size, detection, PE data, etc in a few seconds.

WHAT DOES RIPx API OFFER

• Ransomware Sample detections + Indicator of compromises (IOCs)
• Static file information/Dynamic activities + TTPs
• Community sources - Millions of files daily being aggregated by the RIPx community version
• Cyberstanc R&D lab - Our internal threat repository and intelligence database built with advanced honeypot and customized tools.
• Targeted IoCs with industry specific – Malware collected repository and known/unknown threat IOCs from industry, who willing to participate in threat sharing program.