Product Overview: SonicWall Capture Client
The SonicWall Capture Client is a comprehensive, unified endpoint protection platform designed to deliver multiple layers of security and threat protection for organizations. This solution is powered by SentinelOne, a leading provider of next-generation malware protection.
Key Features and Functionality
Advanced Threat Protection
The Capture Client features a next-generation malware protection engine that utilizes advanced techniques such as machine learning, network sandbox integration, and continuous behavioral monitoring. This ensures effective protection against known, unknown, and fileless malware, ransomware, memory exploits, and other sophisticated threats.
Centralized and Cloud-Based Management
The platform offers a cloud-based management console that provides easy-to-use, intuitive controls for troubleshooting, remediation, license management, and other administrative tasks. This centralized management allows for true multi-tenant capabilities, enhancing both network and endpoint security.
Integration with SonicWall Ecosystem
Capture Client integrates seamlessly with SonicWall next-generation firewalls, enabling deep inspection of encrypted TLS traffic (DPI-SSL) through the management of trusted TLS certificates. This integration ensures comprehensive security enforcement and visibility across the entire network.
Application Vulnerability Intelligence
The Capture Client provides visibility into application vulnerabilities, allowing administrators to identify vulnerable applications, assess their severity, and understand the reasons behind these vulnerabilities. This feature helps in maintaining the security posture of the organization.
Remediation and Rollback Capabilities
One of the standout features of the Capture Client is its ability to remediate attacks and restore data affected by malware. The Advanced version of the Capture Client includes unique one-click rollback capabilities for Windows, enabling the system to be restored to a previous state before the malware was activated, with all files intact.
Capture Advanced Threat Protection (ATP) Integration
The Capture Client Advanced integrates with SonicWall Capture Advanced Threat Protection (ATP), which manipulates and tests files in a sandbox environment to discover, quarantine, and remove hidden threats before they can execute. This integration enhances the overall threat detection and response capabilities.
Deployment and Compatibility
The Capture Client can be easily deployed using various methods, including Microsoft Active Directory group policies, third-party software deployment tools, or through customized URLs for silent self-installation. It is compatible with Windows 7 and higher, as well as Mac OSX.
Packages and Offerings
The SonicWall Capture Client is available in two primary packages:
- Capture Client Basic: Offers next-generation malware protection, remediation features, and DPI-SSL support.
- Capture Client Advanced: Includes all the features of the Basic package plus advanced rollback capabilities and Capture ATP integration.
In summary, the SonicWall Capture Client is a robust endpoint protection solution that combines advanced threat detection, centralized management, and seamless integration with the SonicWall ecosystem to provide comprehensive security for modern IT environments.