Reporting Is Where the Money Is:By Frank Ohlhorst | Posted 2008-10-01 Email Print
Sunbelt Software’s CWSandbox creates automated blended attacks, letting IT solution providers and IT consultants test a security solution's muscle. The product also provides IT solution providers and IT consultants with another tool for creating services revenue.
Of course, gathering all of that information and performing those tests can prove to be quite valuable to a security VAR, but the real power of the product comes from the reporting capabilities. Here, CWSandbox performs a granular analysis to provide better readability of the data collected. The analysis captures resource events which include API calls, WinSock, packets and more.
That analysis drives the product’s report capabilities. Those reports start out as XML files and can be automatically parsed with XSL templates to generate HTML or text reports. Reports show information on the list of newly created files and registry entries, as well as any processes that were launched by the malware application. The reports can be e-mailed automatically to the submitter or administrator, stored in the database or presented in the Web interface.