Cisco Security and Minerva Labs

How Minerva Labs and Cisco Security work together

Minerva Labs’ innovative endpoint security solution protects enterprises from today’s stealthiest attacks without the need to detect threats first, all before any damage has been done. The company’s Anti-Evasion Platform deceives malware by controlling how it perceives its environment, blocking unknown threats that evade existing defenses. Without relying on signatures, models or behavioral patterns, the Anti-Evasion Platform causes malware to disarm itself, thwarting it before the need to engage costly security resources.

Product Integrations

  • Secure Malware Analytics: Minerva’s Anti-Evasion Platform integrates with Malware Analytics to automatically identify mutex-based infection markers to protect endpoints. These markers can be used as "vaccines" to prevent endpoint infections by the associated malware families with no performance impact. Minerva’s solution simulates the infection markers to protect against the threats, instead of merely notifying the enterprise after the infection. The joint solution cuts incident response times, produces threat intel that prevents infections, contains outbreaks even if other defenses couldn’t.
  • Secure Firewall: The Azure Gateway Load Balancer provides bump-in-the-wire functionality, ensuring Internet traffic to and from an Azure VM, such as an application server, is inspected by Secure Firewall, without requiring any routing changes. This is another example of how Secure Firewall drives efficiency at scale. Additionally, the integration simplifies deployment, managing, and scaling of your firewalling. This reduces operational complexity, providing a single entry and exit point for traffic at the firewall. With the gateway load balancer, your applications and infrastructure maintain visibility of source IP address, which is critical in some environments. https://blogs.cisco.com/security/cisco-secure-firewall-to-support-microsoft-azure-gateway-load-balancer Secure Firewall Threat Manager's eStreamer API is compatible with Microsoft's Sentinel SIEM. Customers can download a CEF-based eStreamer client following instructions found on the Sentinel connector selection add on page and send hi-fidelity event information directly to Sentinel from the Secure Firewall Threat Manager (f.k.a. Firepower Management Center).

Useful links