FortiSandbox is used to contain and prevent malware outbreaks.
External reviews
35 reviews
from
and
External reviews are not included in the AWS star rating for the product.
It can analyze process behavior and integrate well with other solutions by the same vendor
What is our primary use case?
How has it helped my organization?
One of my clients was receiving malware in their email. Less than 1 percent of their email contained malware, but it was still too many. FortiSandbox prevented the malware from entering the broader network. FortiMail forwarded the files to be analyzed in FortiSandbox, which ran it on a Windows 10 machine with Office 365. The sandbox detected malicious behavior. One of the files tried to change the Windows registry, so FortiSandbox flagged it as malware and reported it to FortiMail, which blocked the email.
What is most valuable?
FortiSandbox analyzes the behavior of processes in a sandbox environment, which is useful for threat hunting. The solution has an excellent standard configuration, and you can prioritize the types of files of VMs you want to analyze. It also integrates seamlessly with other Fortinet solutions, like FortiGate, FortiMail, and FortiEMS.
What needs improvement?
It should be easier to import custom virtual machines. Some of the VMs that are in FortiSandbox don't have the applications that we have in our environment. We need to import a VM with specific applications that we use in our environment. Have all the licenses because this is a real environment. You need a license for the Windows client you run on it. It's possible to import custom VMs, but it's a pain to do it. I would like a tool that simplifies the process.
For how long have I used the solution?
We have used FortiSandbox for three years.
What do I think about the stability of the solution?
FortiSandbox is pretty stable. I don't remember a time when it crashed. We've had to restart the VMs, but not the sandbox itself.
What do I think about the scalability of the solution?
There are limits to FortiSandbox because you must pay for a license for all the VMs you use.
How was the initial setup?
The setup is straightforward. Yeah. You only need to install the VM and configure the two interfaces. We use one FortiSandbox for external requests and another internally. Sometimes, the malware tries to access something on the Internet. you can block it on the sandbox or allow it, so you can gather more information about what it is trying to do.
But maybe you don't want the VM or the malware on the VM accessing the Internet from your environment. You need to configure that interface for that purpose. After that, you must authorize the FortiGate or the fabric devices on the FortiSandbox and create the VMs. If you are using the VMs Fortinet provides, you can download and provision them with one click. It will have the default configuration. The default policy may not work the way you intend, but it will protect out of the box.
What was our ROI?
We've seen a return by preventing outbreaks and stopping zero-day threats.
What's my experience with pricing, setup cost, and licensing?
FortiSandbox is pricey because we need to purchase three licenses, including one for the cloud and an on-prem license. We also have a sandbox that comes with a FortiGate UTM license, but you don't have access to the VMs. However, you can access the malware timeline from the cloud and see the information about the FortiSandbox services. Still, It doesn't block the threat immediately. If you are downloading malware, FortiGate will send it to the FortiGate cloud sandbox, but the download will finish, and you'll have malware in your host. As soon as the sandbox returns a verdict on that file, it will be blocked on the next download attempt if it's malware.
What other advice do I have?
I rate FortiSandbox 10 out of 10.
Awesome high end cybersecurity tool
What do you like best about the product?
We started using this in our current organization due to the high-security risks we faced last year.
The good thing about the box is gui interface,
The good thing about the box is gui interface,
What do you dislike about the product?
CPU utilization high when we run repors.
What problems is the product solving and how is that benefiting you?
Outside interface was exposed to so many threaths. we can use this as a gateway to mitiage the risks.
Really good and used for most of my day2day works.
What do you like best about the product?
The work it does during something is required it will fulfill the needful.
Like the way, it helped during upgradation and other stuff.
Like the way, it helped during upgradation and other stuff.
What do you dislike about the product?
Some times when we work on the device, we see the CPU spike unintentionlly.
What problems is the product solving and how is that benefiting you?
Last week we had a vulb scan and this box helped us to manage the security risk and secure our devices.
Fantastic Experience with Forti Sandbox
What do you like best about the product?
Alerting Mechanism which help to mitigate all the risks in a corporate network and to reduce impact on business.
What do you dislike about the product?
Triggering multiple alerts for all the activities happening on network
What problems is the product solving and how is that benefiting you?
Mitigating security risks for business continuity
Effective threat protection solution
What do you like best about the product?
It protects us from malicious attacks, protects user information and reduces stress on technical infrastructure personnel. Their technical support is good. It is an ally of the organization.
What do you dislike about the product?
They should do a little more work on reporting. The rest is fine.
What problems is the product solving and how is that benefiting you?
It has helped us prevent various malicious attacks including ransomware.
Recommendations to others considering the product:
The product has worked effectively helping us to keep our networks safe from malicious attacks.
An excellent program in its performance
What do you like best about the product?
I love that Fortinet has not recently relied solely on its FortiGate; however, it has continuously developed and included more products and alternatives like FortiSandbox, which truly provides comprehensive security coverage to stay on top of industry threats and demands. It allows us to test/examine malicious activity on a deeper level so we can be sure or take further action as needed.
What do you dislike about the product?
I'm really open to using FortiSandbox, I don't mind it at all.
What problems is the product solving and how is that benefiting you?
I am ready to gather information from my system, gadgets, etc. Apart from the introductory abnormal status examination, I am ready to get to the bottom of things using FortiSandbox. With this, we have had the ability to more easily understand certain traffic and counteract incidents/problems to increase or cause more damage.
Recommendations to others considering the product:
It is an extraordinary offer from Fortinet that will take your security posture and knowledge capabilities to the next dimension. FortiSandbox is exceptionally useful, even beyond security. It can make your task smoother and progressively more productive.
"A very good software"
What do you like best about the product?
I adore how Fortinet hasn't quite recently lived of their FortiGate, however has continually developed and included more items and alternatives like FortiSandbox, which genuinely give comprehensive security inclusion so as to stay aware of dangers and industry requests. It enables us to test/examine vindictive movement on a more profound dimension so we can rest guaranteed or make further move as required.
What do you dislike about the product?
Truly i am open to utilizing fortisandbox.i don't dislike anything
What problems is the product solving and how is that benefiting you?
I'm ready to gather information from over my system, gadgets, and so forth. Other than introductory abnormal state examination, I'm ready to get to the base of things utilizing FortiSandbox. With this we have had the capacity to more readily comprehend certain traffic and counteract episodes/issues from getting greater or doing additionally harm.
Recommendations to others considering the product:
It is an extraordinary offering from Fortinet that will take your security pose and insightful capacities to the following dimension. FortiSandbox is exceptionally helpful, even past security. Can make your task smoother and progressively productive.
Advanced Zero Day Detection
What do you like best about the product?
FortiSandbox has a ton of awesome features, but I have to say their integration with our firewall (Fortigate 60E) is the best feature. It completely protects us from zero day attacks do to their always up to date protection. I couldn't ask for more
What do you dislike about the product?
My only dislike would have to be the price
What problems is the product solving and how is that benefiting you?
Integrates with our firewall for help protect our network
Helps improve the secirity in our office.
What do you like best about the product?
I like that It secures your organization by accessible prices
What do you dislike about the product?
The generation of reports. Its difficult without Fortianalyzer.
What problems is the product solving and how is that benefiting you?
Improve the cyber security in our office.
Excellent
What do you like best about the product?
I'm able to detect and prevent intrusions before they happen, its a complete virus/malware database that gets update real-time with our unit. Have our office secure with high-end security against cyber threats with this.
What do you dislike about the product?
Honestly im comfortable using fortisandbox.
What problems is the product solving and how is that benefiting you?
We have improved our cyber security in our office. We have reduced the amount of threats and attacks specially through emails.
showing 1 - 10