Prevention before detection

Minerva Anti-Evasion Platform blocks unknown, evasive malware by controlling how it perceives its environment and ensuring it refrains from execution.

Exploiting the evasive nature of malware

Advanced malware today uses evasion techniques to get past anti-virus products, sandboxes, and other security systems. Instead of infecting every machine they land on, they actually camouflage their malicious code, staying in a “sleep” state until they’re in the ideal environment for the attack. Only then do they unpack and execute the code. In this sleep state, the malicious code can’t run or cause any damage. This very malware evasion mechanism is what we take advantage of.

Stopping the clock on malware

Minerva’s Environment Simulation Technology is situated between the malware and the operating system. Every time the malware tries to sense what conditions and defenses are present, Minerva simulates an environment that would be unideal for the malicious code to execute. As the malware believes the environment is not ideal, it stays asleep indefinitely, while the security professional is notified of the presence of suspicious code

Ransomware Prevention

Minerva prevents any damage that might potentially be done by any ransomware including CryptoWall, CTB-Locker, VaultCrypt, etc.

With Minerva - you will never lose your data.

Learn More >>

Tampering protection

Minerva protects OS and critical applications including browsers and processes responsible for the intake of credit card information, etc.

APT & Targeted Attacks Interruption

Minerva prevents the deadliest unknown threats by creating an environment in which the malware refrains from execution, just before the installation phase (5th phase in the "Cyber Kill Chain") and before any damage has been done.

Minerva prevents targeted attacks without the need to detect them first and without other prior knowledge.

Take Over Prevention

Minerva protects organizations from hostile takeover of their endpoint assets by Remote Access Trojans (RAT).

Offline operation mode
Fully standalone mode which keeps protecting endpoints even when disconnected from the organizational network.

Easy Deployment
As a super-thin agent, Minerva can be installed on thousands of machines in no time. No restart is required.

Lightweight
As there is no heavy client running in the background, and no active detection application scanning processes and files, Minerva does not use up any resources, and has no impact on the end user experience.

No false positives
With Minerva in place, there are no false-positive alerts. Once a notification appears, you know that a real threat was neutralized and prevented before any damage has been done.

No ongoing maintenance
Minerva does not need any ongoing upkeep to ensure it’s operating at its best. It even updates itself automatically with new simulations and artifacts on a regular basis.

Supports all Windows OS
Embedded systems, Point of Sale (PoS) and additional legacy systems, as well as physical and virtual environments (e.g. VDI Terminal Server).

Fully standalone mode which keeps protecting endpoints even when disconnected from the organizational network.
Offline operation mode
Offline operation mode
As a super-thin agent, Minerva can be installed on thousands of machines in no time.
No restart is required.
Easy deployment
Easy deployment
As there is no heavy client running in the background, and no active detection application scanning processes and files, Minerva does not use up any resources, and has no impact on the end user experience.
Lightweight
Lightweight
With Minerva in place, there are no false-positive alerts. Once a notification appears, you know that a real threat was neutralized and prevented before any damage has been done.
No false positives
No false positives
Minerva does not need any ongoing upkeep to ensure it’s operating at its best. It even updates itself automatically with new simulations and artifacts on a regular basis.
No ongoing maintenance
No ongoing maintenance
Embedded systems, Point of Sale (PoS) and additional legacy systems, as well as physical and virtual environments (e.g. VDI Terminal Server).
Supports all Windows OS
Supports all Windows OS

Defense Ecosystem Enhancement

Minerva increases the value of your entire defense ecosystem by notifying your other security tools of the existence of the unknown malware, so they can find and eradicate it even faster, adding incredible value to your existing security and defense applications. Minerva integrates with endpoint security solutions, network security solutions and cloud intelligence solutions:

Ready to see us in action?

Resources

SANS Webinar - Using Anti-Evasion to Block Stealth Attacks

This webcast will explain a unique approach to preventing evasive malware from infecting endpoints.

Watch >>

Minerva Labs Research Report: 2017 Year in Review

End of the year offers an opportunity to reflect upon the key events that have shaped 2017 and set the direction for 2018.

Download >>

A SANS Institute Product Review

See how Minerva Labs’ Anti-Evasion Platform performed in the SANS Institute test

Download >>

Brochure: Anti-Evasion Brochure

Block unknown threats that are designed to evade your existing defenses.

Download >>
See All Resources >>