Professional Documents
Culture Documents
Download Reputation
Web Control / Category-based URL Blocking
Peripheral Control (e.g. USB)
Application Control
Deep Learning Malware Detection
BEFORE IT RUNS
Live Protection
Pre-execution Behavior Analysis (HIPS)
PREVENT
Sophos Clean
On-demand Endpoint Isolation
Single-click “Clean and Block”
Sophos Intercept X Features
Details of features included in Intercept X. Intercept X Advanced also includes features from Sophos Central Endpoint Protection.
Features Features
RANSOMWARE
Ransomware File Protection (CryptoGuard)
Mandatory Address Space Layout Randomization
ANTI-
Automatic file recovery (CryptoGuard)
Bottom-up ASLR
Null Page (Null Deference Protection)
Disk and Boot Record Protection (WipeGuard)
Heap Spray Allocation Web Browsers (including HTA)
APPLICATION
LOCKDOWN
Dynamic Heap Spray Web Browser Plugins
PROTECTION
LEARNING
Structured Exception Handler Overwrite (SEHOP)
DEEP
Deep Learning Potentially Unwanted
Applications (PUA) Blocking
Import Address Table Filtering (IAF)
Load Library False Positive Suppression
Reflective DLL Injection Threat Cases (Root Cause Analysis)
INVESTIGATE
RESPOND
REMOVE
Shellcode
Sophos Clean
VBScript God Mode
Wow64
Synchronized Security Heartbeat
Syscall Can run as standalone agent
Hollow Process Can run alongside existing antivirus
Can run as component of existing
DLL Hijacking Sophos Endpoint agent
Squiblydoo Applocker Bypass DEPLOYMENT
Windows 7
APC Protection (Double Pulsar / AtomBombing)
Windows 8
Process Privilege Escalation Windows 8.1
Credential Theft Protection
ACTIVE ADVERSARY
Windows 10
MITIGATIONS
Windows macOS
Web Security
ATTACK SURFACE
REDUCTION
Download Reputation
Live Protection
PREVENT
Server Operating Systems are not covered by Central Endpoint or Central Intercept X.
Central Intercept X Advanced also includes all Intercept X features.