Kaspersky Sandbox detects and automatically blocks complex threats on client devices (workstations, computers, servers, hereinafter also "workstations").
The solution is intended for corporate users.
Kaspersky Sandbox consists of the following components:
Kaspersky Sandbox – responsible for the server side of the solution. Kaspersky Sandbox is installed on one or several servers within your organization's network. The servers can be clustered. Virtual images of Microsoft Windows operating systems are deployed on servers with Kaspersky Sandbox. The objects being scanned are launched in these virtual images. Kaspersky Sandbox analyzes the behavior of objects to detect malicious activity and complex threats that might harm an organization's IT infrastructure.
The Endpoint Protection Platform (hereinafter also EPP) comprises Kaspersky Endpoint Security for Windows and Kaspersky Security for Windows Server. Kaspersky Endpoint Security for Windows and Kaspersky Security for Windows Server are installed on workstations on your organization's network and provide comprehensive protection for those workstations against various types of threats, network attacks, and scams.
Kaspersky Endpoint Agent for Windows, which is installed as part of EPP. Kaspersky Endpoint Agent for Windows is installed on workstations and servers on your organization's network and facilitates communication between EPP and Kaspersky Sandbox, while also performing automatic responsive actions to detected threats configured in Kaspersky Security Center policies.
For complete information about Kaspersky Sandbox, as well as for information on configuring Kaspersky Endpoint Agent's integration from Kaspersky Sandbox's side, refer to the Kaspersky Sandbox Help.