Overview

AppGuard Enterprise places AppGuard protection software agents installed on the endpoint under the centralized control of authorized network administrators.  It ensures that enterprise policies for host endpoints are maintained without the ability of the user to modify them.  Its host-perspective monitoring and reporting can be easily integrated to provide earlier reporting of Indicators of Attack (IOA) to enhance Security Information and Event Management (SIEM) with information captured before a compromise has occurred.

Endpoint Agent

       
  • Software agent installed on Windows endpoint
  •    
  • Computers, laptops, tablets, ATMs, POS systems, embeddable versions
  •    
  • Compatible with all Windows version, applications, enterprise systems
  •    
  • Protects “on” and “off” enterprise with per-process log collection
  •    
  • Agent can be distributed via network management tools
  •    
  • Underlying PKI infrastructure for digitally signing and encrypting logs
  •  

Enterprise Management System

 

       
  • Centrally managed console
  •    
  • Administrator rights limited to a trusted few
  •    
  • Manages policy updates with audit trail
  •    
  • Policy updates pushed directly to endpoints
  •    
  • Can establish different endpoint trust groups
    with different security policies
  •    
  • Collects granular endpoint logs real time -
    early warning of attempts while protected
  •  

Earlier Warning - Actionable Threat Intelligence

AppGuard Enterprise blocks malware attacks at the earliest stages, halting breach attempts before a compromise can occur. In doing so, it collects Indicators of Attack (IoA) that can be analyzed and used to identify new malware before any Indicator of Compromise (IOC) is known. AppGuard Enterprise can deliver near real time documented time and geo-location highly granular per process reporting valuable for enhancing situational awareness of the host environment. Incorporation of this unique host-perspective can materially enhance enterprise forensics, threat intelligence, and compliance with earlier warning of events in a security posture that prevents, rather than reacts to, attempted exploits.


       
  • Early IOA reporting for DFIR Teams while protected
  •    
  • Effective even for undiscovered malware for earlier warning
  •    
  • Timely Advisories and Alerts digitally signed and encrypted
  •    
  • Platform for IOA formation, identification, sharing
  •    
  • Threat Information collectible from endpoints “on” and “off” enterprise
  •    
  • Independent Policy administration and reporting management plane
  •    
  • No equipment required on customer premises for managed services
  •    
  • Logs can be integrated with other systems for analysis
  •    
  • Post Incident analysis without remediation crisis
  •  

Learn more about the “AppGuard Breach Prevention System.”

Contact a Blue Ridge Networks cybersecurity professional to learn more about how we can help address your IT security needs

Learn how AppGuard can protect your home PC or individual laptop.