Cyware Sandbox
Notice
This feature is available in Collaborate v3.8.10.0 (EA) onwards and is available for MSSP customers only. Contact your Cyware sales or support representative to gain access to Cyware Sandbox.
Cyware Sandbox lets you safely execute suspicious files or URLs in a controlled environment. You can detect malicious behavior, investigate unknown threats, and generate actionable Indicators of Compromise (IOCs) without affecting live systems.
You can enable Sandbox from Configuration > Cyware Add-ons and access it from the Main Menu. You can further enable Sandbox for specific organizations from Settings > Member Settings > Organization. For more information, see Configure Cyware Add-ons and Organization Details.
Note
You can enable Sandbox for an organization only after creating the organization and while editing its details.
Key capabilities
You can use the following capabilities based on the depth of your analysis:
Scan: Run a lightweight scan of files or URLs to get an immediate verdict when fast action is needed.
Sandbox: Submit files or URLs for in-depth monitoring. Sandbox captures detailed activity and generates a report that you can review anytime.
For more information about Sandbox, see Cyware Sandbox.