VxStream Sandbox is a high-end malware analysis framework with a very agile architecture. It can be implemented as a large-scale system processing thousands of files automatically or as a web service for incident response and forensics. Due to its simple interface and numerous integration capabilities with other technology providers, it seamlessly enriches a SOCs incident response workflow and security stack. VxStream Sandbox is trusted by SOCs, CERTs, DFIR teams, IT-security forensic labs, researchers, and threat intelligence service providers all around the world. Multiple S&P 100, Fortune 500 and U.S. government agencies are using VxStream Sandbox every day.
The simple RESTful HTTP based API and open and agile architecture offers ready integrations into various platforms (e.g. Phantom, MISP) as well as interfaces into corporate systems (e.g. HP ArcSight, RSA NetWitness). The wide range of integrations combined with a user-centric report and advanced IR focused data correlation make VxStream Sandbox such a competitive player on the complex market today. VxStream Sandbox is a powerful engine and an effective incident response tool at the same time.