Message Image

Skip main navigation (Press Enter).

Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

Bloodhound functionality?

Jump to Best Answer

Ahmed MaherJul 27, 2017 10:14 AM

Dears, I found this description on bloodhound from the admin guide " Bloodhound locates and isolates ...

ℬrίαηJul 27, 2017 10:19 AMBest Answer

The difference is explained here: http://www.symantec.com/docs/TECH92436 They compliment one another ...

TorbJul 27, 2017 10:37 AM

In SEP 14 the bloodhound configuration also cover machine learning that detect malware pre-executio ...

1. Bloodhound functionality?

0 Recommend
Ahmed Maher
Posted Jul 27, 2017 10:14 AM

Reply Reply Privately
Dears,

I found this description on bloodhound from the admin guide "Bloodhound locates and isolates the logical regions of a file to detect virus-like behavior", so from what i understand is that its kind of like SONAR but bloodhound functions on pre-execution of the file unlike SONAR that monitors file while in-execution to monitor its behavior, is thats correct?

Thanks in Advance
2. RE: Bloodhound functionality?
Best Answer

0 Recommend
ℬrίαη
Posted Jul 27, 2017 10:19 AM

Reply Reply Privately
The difference is explained here:

http://www.symantec.com/docs/TECH92436

They compliment one another as both use heuristics.. Bloodhound monitors files on the file system while SONAR monitors processes running in memory.
3. RE: Bloodhound functionality?

0 Recommend
Torb
Posted Jul 27, 2017 10:37 AM

Reply Reply Privately
In SEP 14 the bloodhound configuration also cover machine learning that detect malware pre-execution https://support.symantec.com/en_US/article.TECH236704.html

Copyright 2019. All rights reserved.

Powered by Higher Logic