Sold by: OPSWAT
Deployed on AWS
OPSWAT MetaDefender Core provides comprehensive file upload security to protect against malware, zero-day attacks, and data breaches.
4.5
Overview
Image
OPSWAT MetaDefender Core Security Dashboard
Image
OPSWAT MetaDefender Core Workflow
Image
OPSWAT MetaDefender Core Archive Extraction
Video
Product video
Note: This is a contract listing for use with a private offer only. This listing is not meant to be transacted outside of an AWS private offer. To inquire about a Private Offer, please contact us at apn-sales@opswat.com .
OPSWAT MetaDefender Core offers an advanced multi-layer security platform that prevents malicious traffic from infiltrating your AWS Cloud deployment to protect your mission-critical data from deliberate theft or inadvertent leakage and compromise. The solution combines superior malware detection with market-leading threat detection and prevention with multiscanning, broad file-type Deep CDR (Content Disarm and Reconstruction), and vulnerability scanning and reporting of installers, binaries or applications.
MetaDefender Core offers flexible deployment options via NVME, along with support for containers and Amazon EKS. Integration is available via REST API for custom applications, as well as plug-and-play support for ICAP-enabled network appliances and enterprise storage solutions.
Highlights
- Quickly scan all files with top 30+ antivirus engines and detect over 99% of known malware.
- Recursively sanitize 100+ file types with market-leading Deep CDR technology to remove all potential embedded threats.
- Reliable, scalable solution to meet the needs of both small customers and large or complex enterprises.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Win2022 Microsoft Windows Server 2022
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
MD Core Windows | Annual subscription for MetaDefender Core Windows | $1,200,000.00 |
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
Accessing MetaDefender web-based management console:
- To access the MetaDefender Core web-based management console for the first time, connect to the IP address of the instance using a browser (e.g. http://localhost:8008 ). You will then be guided through the setup wizard to configure, license and use the product.
Connecting to MetaDefender Core AMI Instance console:
- To connect to your MetaDefender Core command-line console, you will need to use RDP. For further information about the standard AWS method of connecting to an instance, see information described here: Connect to your Windows instance - Amazon Elastic Compute Cloud
- Operation of the product is covered here: https://docs.opswat.com/mdcore/operating .
Health and Monitoring
- Maintenance information can be found here: https://docs.opswat.com/mdcore/operating/regular-maintenance
Additional Details
- There are no additional external resources that are required for the product to function.
- Customer data is not collected while running this product.
- To create custom AMI from this OPSWAT AMI is covered here: https://docs.opswat.com/mdcore/cloud-deployment/single-ec2-deployment#opswat-metadefender-ami-from-marketplace-usage
Resources
Support
Vendor support
To obtain the software and related modules, please sign in or create an account at https://my.opswat.com . A license key will be provided by your OPSWAT Sales representative. Minimum system requirements: https://docs.opswat.com/mdss/installation/user-guide . Operation: https://docs.opswat.com/mdss/operating . Instructions for Kubernetes environment: https://docs.opswat.com/mdss/installation/kubernetes-deployment . Support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By OPSWAT
By Cloud Storage Security
By Trend Micro
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Multi-Engine Malware Detection
Scan files using over 30 antivirus engines with detection capability of 99% of known malware
Content Disarm and Reconstruction
Recursively sanitize over 100 file types by removing potential embedded threats using advanced Deep CDR technology
Flexible Deployment Architecture
Support for NVME deployment, container environments, and Amazon EKS with integration capabilities via REST API
Network Security Integration
Compatible with ICAP-enabled network appliances and enterprise storage solutions for comprehensive threat prevention
File Type Security
Advanced scanning and sanitization capabilities across multiple file types with comprehensive threat detection mechanisms
Malware Detection Engines
Supports multiple virus detection engines including Sophos, CSS Premium, and CSS Secure for comprehensive malware identification
Scanning Models
Offers three scanning approaches: event-based real-time scanning, retrospective scanning, and API-based pre-write scanning for flexible malware detection
File Analysis Techniques
Utilizes static, dynamic, and forensic analysis powered by SophosLabs Intelix platform for comprehensive file examination without execution
Multi-Storage Platform Support
Provides scanning capabilities across Amazon S3, Amazon EBS, Amazon EFS, and Amazon FSx storage platforms
Security Configuration Management
Enables visibility into storage bucket permission policies and configurations through a unified dashboard with security assessment capabilities
Threat Detection
Advanced intrusion detection and prevention system with behavioral analysis and predictive machine learning capabilities
Container Security
Native security controls for Docker containers with automated protection and application control mechanisms
Workload Protection
Host-based security solution supporting both Windows and Linux environments with comprehensive vulnerability shielding
Integrity Monitoring
File and system integrity monitoring with real-time detection of unauthorized changes and configuration drifts
Multi-Environment Support
Security platform compatible with physical, virtual, and cloud infrastructure with flexible deployment options
Standard contract
No
No
No
Customer reviews
Brody T.
Consistent Background Scanning with Easy to Understand Results
Reviewed on Jan 16, 2026
Review provided by G2
What do you like best about the product?
File scanning runs consistently in the background and we have not seen noticeable slowdowns in applications or file services. The scan results are easy for non security teams to understand, which helps reduce escalations to IT. Integration was also straightforward, allowing us to add file inspection into existing systems without introducing new tools for staff to manage.
What do you dislike about the product?
The main effort is during rollout. Policies need careful adjustment so business files are not blocked unnecessarily. Once tuned, ongoing maintenance is minimal.
What problems is the product solving and how is that benefiting you?
It reduces operational risk caused by infected or suspicious files entering the environment. This leads to fewer disruptions, fewer support tickets, and a more stable IT environment overall.
Nicolas M.
Fast, Clear Scanning with File Sanitization That Keeps Workflows Moving
Reviewed on Jan 15, 2026
Review provided by G2
What do you like best about the product?
MetaDefender protects against file based threats without forcing changes to existing security architecture. Scanning is fast and consistent, and the results are clear enough to automate actions. The option to sanitize files instead of blocking them helps maintain normal business workflows.
What do you dislike about the product?
Policy tuning requires attention, especially when dealing with archives or mixed file types. Early testing is important to prevent overly strict rules from interrupting normal traffic.
What problems is the product solving and how is that benefiting you?
It reduces exposure to file based threats coming from external users, vendors, and integrations. This lowers incident frequency, improves confidence in inbound content, and strengthens overall security posture without adding operational friction.
Levi F.
Reliable, Workflow Friendly Scanning with Easy to Use API
Reviewed on Jan 15, 2026
Review provided by G2
What do you like best about the product?
MetaDefender fits well into automated workflows and runs reliably without manual intervention. The API responses are easy to consume in scripts and jobs, and scanning performance stays consistent even when tasks run in parallel.
What do you dislike about the product?
Some upfront policy tuning is needed to prevent automated jobs from failing on edge case file types.
What problems is the product solving and how is that benefiting you?
It adds automated file security checks without breaking hands-off workflows. This reduces risk from untrusted inputs while keeping automation reliable, predictable, and easy to maintain at scale.
Parker S.
MetaDefender Simplifies Consistent, Scalable File Scanning Across Platforms
Reviewed on Jan 14, 2026
Review provided by G2
What do you like best about the product?
MetaDefender makes it easier to enforce consistent file scanning across shared platforms. It scales well as usage grows and avoids each application having to build its own file security logic. Policies are flexible enough to support different risk levels while keeping a common security baseline.
What do you dislike about the product?
Some upfront planning and tuning are needed to align policies with multiple application teams.
What problems is the product solving and how is that benefiting you?
It centralizes file security at the platform layer. This reduces exposure from third party content and helps maintain consistent protection as new services are added.
David G.
Fast, CI/CD Friendly Scanning and File Sanitization via MetaDefender API
Reviewed on Jan 14, 2026
Review provided by G2
What do you like best about the product?
MetaDefender integrates cleanly into automated pipelines using its API. File scans are fast and consistent, and the results are easy to consume in CI/CD workflows. The ability to sanitize files instead of only blocking them helps keep builds and deployments moving without compromising security.
What do you dislike about the product?
Policy tuning is needed early on so legitimate build artifacts are not flagged or blocked unnecessarily.
What problems is the product solving and how is that benefiting you?
It shifts file security earlier in the delivery process. This reduces production risk while allowing teams to maintain steady release velocity.