Trellix HX4600V
Endpoint Security Virtual Appliance

Trellix HX4600V 1500 Endpoint Security Virtual Appliance

#HX4600V
Contact us for Pricing!

Get a Quote

HX virtual appliances can be deployed on VMware ESXi servers or on Windows Hyper-V servers.

Overview

Trellix Endpoint Security (HX) combines the best of legacy endpoint security products, and enhances it with Trellix technology, expertise, and intelligence to defend against today’s cyber attacks.

Stop attacks with knowledge from front-line responses

Every day brings a new cyberattack, a new vulnerability or a new ransomware target. Security teams find it increasingly difficult to keep up with the threats to their users, company data and intellectual property and don’t always bring in extra help. Responders are burdened with too many tools that do not work together and create more noise than useful signals. Systems in place do not always provide adequate detection and response of these advanced threats.

Trellix Endpoint Security (HX) defends against today’s cyberattacks by using a defense-in-depth model. The modular architecture of Endpoint Security (HX) unites default engines and downloadable modules to protect, detect and respond, and manage endpoint security.

To prevent common malware, Endpoint Security (HX) uses a signaturebased Endpoint Protection Platform (EPP) engine. To find threats for which a signature does not yet exist, MalwareGuard uses machine learning seeded with knowledge from the frontlines of cyberattacks. For attacks on exploits in common software and browsers, ExploitGuard uses a behavioral analysis engine that determines if an exploit is being used and stops it from executing. In addition, Trellix continuously develops modules to detect against attack techniques and accelerate responses to emerging threats. For example, Process Guard was developed to stop credential exfiltration.

Even with the best protection, breaches are inevitable. To ensure a substantive response that minimizes business disruption, Endpoint Security (HX) includes Endpoint Detection and Response capabilities that rely on real-time indicators of compromise (IOCs) developed with help from front-line responders. Trellix tools also:

Search for and investigate known and unknown threats on tens of thousands of endpoints in minutes
Identify and detail the vectors an attack used to infiltrate an endpoint
Determine whether an attack occurred (and persists) on a specific endpoint and where it spread
Establish timeline and duration of endpoint compromises and follow the incident

Modern threats do not stop at one endpoint, so remediating on a single endpoint will not solve most breaches. Full remediation efficiently communicates and points to all devices where a threat may be hiding and correlates this information in real time. Endpoint Security (HX) natively integrates with Trellix XDR, which seamlessly connects all Trellix technologies and services to detect and respond to all the most sophisticated threats.

Figure 1: Trellix Endpoint Security (HX) core engines (center) and available modules (outer ring).

Benefits

Prevent cyber-attacks on the endpoint

Identify attacker behavior and their tactics, techniques, and procedures.
Analyze live memory—without downloading memory images—to discover hidden malware.

Detect malware and other signs of compromise on endpoints across the enterprise

Sweep thousands of endpoints for evidence of compromise, including malware and irregular activities.
Enable remote investigation securely over any network, without requiring access authorization.
Collect targeted forensic data with intelligent filtering to return only the data you need.

Respond to endpoint security incidents faster

Automatically collect data and analyze suspicious activity based on alerts generated by your SIEM, ticketing system or other applications.
Integrate with other detection systems to automate triage of hosts with suspicious activity.
Support open IOCs to allow security analysts to edit and share custom IOCs.

Features

Primary Features

Single agent using defense in depth to minimize configuration and maximize detection and blocking
Integrated workflow to analyze and respond to threats within Endpoint Security (HX)
Malware protection with anti-malware protection, machine learning, behavior analysis, indicators of compromise (IOCs) and endpoint visibility
Natively integrates with Trellix XDR for more visibility and control to fully remediate all threats in an organization

Additional Features

Enterprise Search to rapidly find and illuminate suspicious activity and threats
Data Acquisition to conduct detailed in-depth endpoint inspection and analysis over a specific timeframe
End-to-end visibility that allows security teams to rapidly search for, identify and discern the level of threats
Detection and response capabilities to quickly detect, investigate and contain endpoints to expedite response
Easy-to-understand interface for fast interpretation and response to any suspicious endpoint activity

System Requirements

Endpoint Security virtual appliances require the following VMware resources:

VMware ESXi host version 6.0 or later. Earlier ESXi versions are not supported
VMware vSphere Client
VMXNET 3 network drivers
Standard virtual switch created for the monitoring ports of the virtual appliances and attached to a physical network adapter on the ESXi server.
VMware VCenter Server (recommended). When using vSphere Client to add virtual appliances to vCenter Server, the Deploy OVG Template wizard provides an easy way to enter activation code. Otherwise, you must type it in the virtual appliance console because you cannot paste into this console.

Virtual Appliance Specifications
License Model	HX4600V	HX4600V (D)
Max Endpoints Supported	100,000	100,000
CPU	8 cores	8 cores
Memory	64 GB RAM	64 GB RAM
Disk	5000 GB Disk	5000 GB Disk
Virtual NICs	2 vmxnet 3 interfaces	2 vmxnet 3 interfaces

Documentation

Download the Trellix Endpoint Security HX Datasheet (.PDF)

Download the Trellix Endpoint Security HX Specifications Datasheet (.PDF)

Pricing Notes:

Pricing and product availability subject to change without notice.

Trellix Products

Endpoint Security Virtual Appliances

Trellix HX4600V Endpoint Security Virtual Appliance

#HX4600V
Contact us for Pricing!

Get a Quote