ThreatFeed
Linkedin-in Youtube Facebook-f
VMRay Pricing
Try VMRay

Checkmate: How Malware Anti Sandbox Evasion Checks Can Stall Automation of EDR/XDR Alert Triage

Fully automating EDR/XDR alert validation using older hooking or kernel-mode sandbox technologies can disrupt SOCs and stall submission queues. In high-volume alert environments such as an Enterprise or MDR SOC, the time and resources spent identifying EDR alert false positives and manually triaging “suspicious” or benign malware samples that fail sandbox analysis is extremely costly. In this on-demand webinar, the VMRay Team will walk you through the best malware sandbox architectures for SOC automation, why automated EDR/XDR Alert triage can fail, and how to fix it.

Try VMRay

Covered in The Webinar

Discover which top malware families use Anti-Sandbox evasion techniques

How to stop stalled analysis and timeouts from sabotaging your automated workflows

Calculate your own SOC costs associated with malware false positive alerts

About The Speakers

Andrew Maguire

Sr. Product Marketing Manager

20 + years experience in many different facets of cyber-security including Anti-virus, vulnerability assessment, firewalls, intrusion detection, encryption in both cloud and on-premise B2B solutions from a global marketing perspective. Learn More
Ben Abbott

Security Solutions Engineer | US Team Lead

• 10+ years in cyber security. • His expertise lies in defining advanced malware detection and response strategies • Helped numerous enterprises and governments protect their assets and data. Learn More
No data found
Patrick Staubmann

Threat Researcher

Patrick Staubmann joined VMRay as a threat researcher back in 2019. As part of the Threat Analysis team, he continuously researches the threat landscape and conducts analyses of malware samples in depth. To further improve the companies’ product, he also extends its detection capabilities in form of behaviour-based rules, YARA rules, and configuration extractors. He is especially interested in reverse-engineering, low-level system security and exploitation.

Fatih Akar

Security Product Manager

As the Security Product Manager of VMRay, Fatih Akar leads the Advanced Threat Detection & Analysis related product initiatives. Before joining the products team, he worked as a Solution Engineer at VMRay, liaising between customers, quality assurance, and product management. Before joining VMRay, Fatih held various security engineering roles in large enterprises which operate in multi-national locations.

Explore Valuable Cybersecurity Resources

Request A Free Trial Now

Subscribe to our Newsletter:

Linkedin-in Youtube Facebook-f

Solutions

Products

Why VMRay

Resources

Missed the headlines?

We’re featured in:

image 15
image 16
image 17
image 18
© Copyright 2024 VMRay

ThreatFeed

Linkedin-in Youtube Facebook-f
VMRay Pricing
Try VMRay