Kaspersky Sandbox detects and automatically blocks complex threats on the client devices (workstations, computers, servers, hereinafter also "workstations").
The solution is intended for corporate users.
Kaspersky Sandbox consists of the following components:
Kaspersky Sandbox – responsible for the server side of the solution. Kaspersky Sandbox is installed on one or several servers within your organization network. The servers can be clustered. Virtual images of Microsoft Windows operating systems are deployed on the servers with Kaspersky Sandbox. The objects being scanned are launched in these virtual images. Kaspersky Sandbox analyzes the behavior of objects to detect malicious activity and complex threats in the organization IT infrastructure.
Endpoint Protection Platform (hereinafter also EPP) – Kaspersky Endpoint Security for Windows and Kaspersky Security for Windows Server. Kaspersky Endpoint Security for Windows and Kaspersky Security for Windows Server are installed on workstations in your organization network and provide comprehensive protection of the workstations against various types of threats, network and fraudulent attacks.
Kaspersky Endpoint Agent for Windows, which is installed as part of EPP. Kaspersky Endpoint Agent for Windows is installed on workstations and servers in your organization network and provides communication between EPP and Kaspersky Sandbox, as well as performs automatic response actions to detected threats configured in Kaspersky Security Center policies.
For complete information about Kaspersky Sandbox, as well as for information on configuring Kaspersky Endpoint Agent integration from Kaspersky Sandbox side, refer to Kaspersky Sandbox Help.