Trellix HX is an advanced Endpoint Detection and Response (EDR) solution that can be deployed on-premises either as a physical appliance or a virtual machine.
It includes a signature-based malware prevention system, but its primary purpose is to prevent advanced attacks, such as Advanced Persistent Threats (APTs).
Its success in preventing zero-day attacks comes from its sandboxing feature, and it is one of the leading solutions in the industry for behavior analysis using machine learning. Additionally, it can collect all the necessary data for analyzing a past attack with its ability to pull dumps from endpoint computers during forensic investigations. Moreover, it can execute shell commands on endpoint computers.
The installation and usage of Trellix HX are both easy and purpose-driven.
