Breach Fighter is a malware detection service provided by Stormshield. It relies on a behavior analysis.
FAQ
Breach Fighter is a sandboxing tool designed by Stormshield. It benefits from our solution Stormshield Endpoint Security and the research of our Security Intelligence team in order to detect malicious behaviors in the analyzed files.
The files are executed in a virtual environment and their behavior is analyzed in order to classify them as follows:
- Clean No malicious behavior detected.
- Suspicious The analyzed file shows one or more suspect behaviors. Such behaviors may also be observed in safe files. Before opening or sharing it, please check it comes from a reliable source. If you received it by email for example, ensure you can trust the sender.
- Malicious The analyzed file shows one or more behaviors common to malware. The file is unsafe. Do not keep it, do not open it and do not share it.
Near the file category, the link “I disagree with the analysis” allows you to send us your comments. Our Security Intelligence team will manually check the file in order to improve our detection rate and minimize false positives.
Breach Fighter is able to analyze several file types:
- Microsoft Office documents
- PDF documents
- JAR and Java files
- Scripts (Powershell, Jscript…)
- Windows executable files (32 bits and 64 bits)
- E-mails with attachments
- Archives (ZIP, RAR, 7zip, etc.)