SandBox Reporter

Norman’s threat research labs encounter more than 50,000 malicious files every day.

As Norman conducts research and analysis on these files, forensic intelligence is generated and fed to Reporter customers through real-time livefeed access and daily FTP or email packages in TXT, XML, and CSV formats.

ISPs, Government, and security teams rely on SandBox Reporter intelligence to maximize protection of public and private networks.

Key Benefits

  • Don’t wait for delayed blacklist services
    Real-time emerging threat intelligence
  • Block malicious websites and URLs
  • Identify malicious network traffic and behavior
  • Get a head start researching emerging botnets
  • Monitor and detect APT and targeted attacks

Features

Complete forensic summaries of new malware analyzed in Norman’s threat research labs, allowing organizations to create signatures and rules to detect anomalous network traffic, malicious behaviours, and intrusion incidents.

URLs used by emerging malware that may contain malicious code or commands. Customers use this list for URL blacklisting, identification of infected nodes, and taking down malicious websites.

IRC servers used by emerging malware and botnets, including server names, ports, usernames and passwords, etc.
A list of domains targeted by malware or hosting malicious code and commands.

A list of domains targeted by malware or hosting malicious code and commands.