As applications are identified, the firewall can attempt to reveal specific content being downloaded, such as:
Within these files, the firewall can attempt to identify malware, as well as proprietary and confidential information that should not leave the network.
The firewall can support various protocols and the content transmitted through them, such as:
In this context, sandboxing refers to a platform that executes potentially malicious files in a controlled environment. The sandbox monitors and records the file’s activities to determine whether it is harmful or not.
Sandboxing typically enables the firewall to redirect executable files to this controlled environment, preventing users from downloading them until a determination is made regarding their potential maliciousness.
A modern sandbox can run files on various platforms, such as:
Files of interest for execution and analysis in a sandbox go beyond just executable files. Many types of files can perform malicious actions on users’ operating systems, including:
There are several online sandboxes available for you to try, in addition to what a Next-Generation Firewall (NGFW) can offer:
You can also install your own sandboxes, such as: