AhnLab

  • Privacy & Security
  • EULA
  • Contact Us
  • Terms of Use
  • Sitemap

Subscribe to Our Newsletter

Stay informed with AhnLab’s latest threat intelligence
and security insights delivered monthly to your inbox.

Country
AhnLab V3 Engine VersionOES :
Update Engine Now →
  • Visit our LinkedIn Profile
  • Visit our Twitter page
  • Visit our YouTube channel
  • © AhnLab, Inc. All rights reserved.
  • ASEC
  • MyCompany(ELS)
  • AhnLab Document Center
skip navigation
  • 메뉴
  • 본문
  • 하단 정보(링크)
  • Products
    • AhnLab PLUS Platform
    • AhnLab Endpoint PLUS
      • Anti-Malware
      • EPP
      • Sandbox (ATD)
      • EDR
      • SMB Security
      • Mobile Security
    • AhnLab Network PLUS
      • NGFW
      • IPS
      • DDoS Mitigation
      • Sandbox (ATD)
      • Threat Management
    • AhnLab Cloud PLUS
      • CWPP
      • Cloud NGFW
      • Cloud IPS
      • Cloud Threat Management
    • AhnLab Connect PLUS
      • XDR
      • Threat Intelligence
      • SOAR
    • AhnLab CPS PLUS
      • CPS Protection Management
      • OT Endpoint Protection
      • OT IDS
      • OT Portable AV
      • OT Firewall
      • OT Data Diode
      • OT Network Sandbox
      • IT Endpoint Protection
      • IT Anti-Malware
      • CPS Threat Intelligence
    • AhnLab AI PLUS
    • All Products and Services
  • Services
    • AhnLab Service PLUS
      • MDR
      • MSS
      • Professional Service
      • Security Consulting
      • Digital Forensics
      • Cloud Managed Service
      • Global Partners
    • All Products and Services
  • Solution
    • Ransomware Protection
    • Hybrid Cloud Security
    • Zero Trust
    • CPS Protection
    • SOC Modernization
    • TDR
    • DDoS Mitigation
  • Support
    • Technical Support
    • Threat Inquiry
    • Online Support
      • Q&A
    • Notice
    • Download
      • AhnLab Document Center
  • Content Center
    • Content Center
    • ASEC
      • Threat Descriptions
      • Threat Actor Naming
      • ASEC Security Advisory
      • ASEC Blog
    • Highlights
      • MITRE ATT&CK Eval Round 7
      • AhnLab 30th Anniversary
      • Frost Radar CPS Security Leader
  • Partners
  • Company
    • About Us
    • Strategic Materials
my page
Sign InSign Up
언어 선택

No recent searches

    • Contact Us
    • My Company
    • Security Map
HOME
Products
  • Products
  • Services
  • Solution
  • Support
  • Content Center
  • Partners
  • Company
AhnLab Network PLUS
  • Other Products
  • AhnLab PLUS Platform
  • AhnLab Endpoint PLUS
  • AhnLab Network PLUS
  • AhnLab Cloud PLUS
  • AhnLab Connect PLUS
  • AhnLab CPS PLUS
  • AhnLab AI PLUS
  • All Products and Services
Sandbox (ATD)
  • NGFW
  • IPS
  • DDoS Mitigation
  • Sandbox (ATD)
  • Threat Management

AhnLab MDS

Sandbox-based
Advanced Threat Defense

Read BrochureContact Sales

AhnLab MDS is a sandbox solution that provides advanced threat detection, analysis and response capabilities without compromising end-user systems.

Why AhnLab MDS

Unrivaled File Analysis Technology Enables
Powerful Threat Response

Advanced Threat Detection

The multi-engine of AhnLab MDS is the backbone of its unrivaled file analysis technology, applying the most suitable analysis technique aligned with the characteristics of each file. It runs files in an isolated environment (sandbox) and performs a comprehensive analysis of behavior, file/process creation, network traffic, and URL access to determine the maliciousness of files.

01

No Execution Until Validated

AhnLab MDS never lets suspicious files executed in the end-user system. Once unanalyzed files are detected, it instantly holds execution, triggers analysis, and performs response measures, including file removal and system quarantine if a file is convicted of being malicious.

02

AI-Powered Email Security

AhnLab MDS determines the maliciousness of email by extracting the email data and implementing AI-assisted analysis. This results in laser-accurate detection of phishing emails that might evade policy-based detection.

03

Key Features

Safeguarding Business with Multi-Level Analysis

Cutting-Edge Analysis

In the sandbox constructed within the high-performance appliance, AhnLab MDS analyzes every executable and non-executable files as well as covert techniques hidden behind files. It accelerates users to outpace modern cyber threats without compromising end-user systems.

Reversing Anti-VM

Some modern malware is equipped with anti-VM features, which freezes its operation once sandbox environments are detected. AhnLab MDS, always a few steps ahead of the latest cyber threats, reverses the anti-VM feature by disabling malware to scan the sandbox and evade detection.

Network Inspection

When analyzing files, AhnLab MDS granularly detects and blocks malicious network traffic based on extensive signatures and YARA rules to tackle techniques of advanced persistent threats (APTs) such as C2 server connections.

Third-Party Integration

AhnLab MDS is compatible with a variety of third-party products spanning SSL/TLS decryption and spam filtering solutions. This extends its range of file aggregation, detection, and analysis to deliver reinforced threat response capabilities.

Intelligence-Driven Defense

AhnLab MDS actualizes “intelligence-driven defense” by deeply integrating with our native products and services. Our threat intelligence platform, AhnLab TIP, feeds additional insights on files, URLs, and Ips to AhnLab MDS, and industry-leading experts of ASEC step in to deliver the full-scale file analysis service.

Central Monitoring and
Log Management

The intuitive AhnLab MDS dashboard offers exceptional visibility into the threat detection and analysis status and central management of logs and events generated by products deployed across the organization.

Reversing Anti-VM

Some modern malware is equipped with anti-VM features, which freezes its operation once sandbox environments are detected. AhnLab MDS, always a few steps ahead of the latest cyber threats, reverses the anti-VM feature by disabling malware to scan the sandbox and evade detection.

Network Inspection

When analyzing files, AhnLab MDS granularly detects and blocks malicious network traffic based on extensive signatures and YARA rules to tackle techniques of advanced persistent threats (APTs) such as C2 server connections.

Third-Party Integration

AhnLab MDS is compatible with a variety of third-party products spanning SSL/TLS decryption and spam filtering solutions. This extends its range of file aggregation, detection, and analysis to deliver reinforced threat response capabilities.

Intelligence-Driven Defense

AhnLab MDS actualizes “intelligence-driven defense” by deeply integrating with our native products and services. Our threat intelligence platform, AhnLab TIP, feeds additional insights on files, URLs, and Ips to AhnLab MDS, and industry-leading experts of ASEC step in to deliver the full-scale file analysis service.

Central Monitoring and
Log Management

The intuitive AhnLab MDS dashboard offers exceptional visibility into the threat detection and analysis status and central management of logs and events generated by products deployed across the organization.

Dashboard

Check Out How Malicious Files Are Deconstructed

2403132973631216.png

AhnLab MDS detects and unearths incoming files in all aspects, spanning the maliciousness of files, attack attempts, severities, abnormal traffic, malicious URLs, C2 connections, and more. The dashboard graphically visualizes insights in real-time to help users easily understand the recent status of dynamic analysis and cyber threat trends across the organization.

Also, users can access more detailed information by clicking each data on the dashboard.

From the dashboard, you can check:

  • Threat trends - attack attempts, C2 connections, malicious URLs, abnormal traffics, file severities, and more
  • Latest detection - files, abnormal traffics, and malicious URLs
  • Links to find current state of detection and detailed information

Solution

Unrivaled File Analysis Plays a Huge Part in
Security Best Practices

  • Ransomware Protection
    More

    Ransomware Protection

    Threat actors use various techniques until they finally drop ransomware. AhnLab effectively tackles ransomware by redesigning organization’s security system that goes beyond malware prevention.

  • OT Security
    More

    OT Security

    The OT/IT convergence is urging organizations for a new security strategy to bridge the gap between two environments. Employing our “Unified OT Security Framework”, AhnLab delivers OT and IT-integrated security for a successful industrial digital transformation.

The Sandbox Above Global Standard

2403088290121528.png

AhnLab MDS with Common Criteria Certification

AhnLab MDS is globally recognized for its performance, stability, and security by achieving “Common Criteria” certification. The certification will be a foothold for AhnLab MDS to make a stride toward the global market with its trusted threat defense capability.

Resources

  • Brochure

    AhnLab MDS

    download

  • White Paper

    Unified Security for Optimal Ransomware Protection

    download

  • Video

    [Demo] How to Send File Deletion Command on MDS

    link

  • Video

    [Demo] How to Configure Agent Alert Settings on MDS

    link

  • White Paper

    Unified Approach to OT Security

    download

  • Case Study

    How to Design Linux Security Strategy

    download

FAQs

Frequently Asked Questions

AhnLab MDS can be illustrated with its three core features.
1. AhnLab MDS is the “file analysis solution”. It scans malicious techniques that may be contained in executable, non-executable, and script files.
2. AhnLab MDS is the “APT response solution”. It responds to novel file-based APTs targeting a specific organization.
3. AhnLab MDS is the “sandbox solution”. The sandbox analysis is at the heart of AhnLab MDS, running and analyzing files in an isolated virtual environment.
Anti-malware is specialized in detecting, preventing, and removing malware, and it is still the most effective way to combat “known malware”. However, it is challenging for anti-malware to cope with unknown malware or variants employed in modern cyber threats. On the other hand, AhnLab MDS effectively tackles emerging cyber-attacks as it detects and analyzes “known behaviors” involved with executable files and documents.
AhnLab MDS aggregates files via network traffic monitoring and triggers behavior analysis in a virtual sandbox environment. In other ways, AhnLab EDR monitors all behaviors across endpoint environments to minimize the dwell time of cyber threats and prevent recurrence. AhnLab V3, AhnLab MDS, and AhnLab EDR completely complement each other and deliver full-scale threat detection, analysis, and response together.
Since most ransomware is designed in files, you can effectively respond to them with AhnLab MDS, leveraging its next-level file analysis capabilities. If you deploy an optional MDS agent to your PCs, you can have device-level control of file execution by harnessing the “execution holding” feature of AhnLab MDS.
AhnLab MDS testified its world-class threat detection capabilities by underscoring 0% error rate and 99.9% detection rate in the test held by ICSA Labs. On top of its unrivaled file analysis feature, AhnLab MDS stands out with its modern defense techniques, such as anti-VM feature, intelligence-driven defense backed by AhnLab TIP integration and expert-led services, and AI-assisted email protection.