Question Sophos antivirus engine

Please provide comments and solutions that are helpful to the author of this topic.
JB007

JB007

Level 26
Verified
Top Poster
Well-known
May 19, 2016
1,585
Shadowra said:
Hello :)

It's been a long time since I tested it...
When I tested it over 1 year ago, Web detection was very good. Its AV engine, however, had trouble detecting some forms of malware... And it had a lot of trouble cleaning up detected elements (either it didn't delete, or it didn't analyze everything, so the interceptor had to manage everything).
I don't know if it has evolved yet.
Click to expand...
Hi @Shadowra
If this is your last test App Review - Sophos Home Premium 2021 ; the conclusion was not very good for Sophos :unsure:
 
  • Like
Reactions: Dave Russo and Jonny Quest
Trident

Trident

Level 34
Verified
Top Poster
Well-known
Feb 7, 2023
2,364
Shadowra said:
Sophos Home, Waredot, digital-defender
Waredot and Digital-Defender only use Sophos's SDK base, which is very poor...
Waredot also uses Mal/Generic.S detection, but both antivirus programs have no access to Intercept X (ML/PE.A detection used only by Sophos Home / Sophos Endpoint).
Click to expand...
The Sophos engine has very flexible configuration and it is up to the OEM to decide what they want to use. This includes emulation (behavioural genotype), cloud, remediation and others.
The config manual for OEMs is here:

The Mal/Generic-S (for those who don’t know) is Sophos hash-based cloud detection for High Risk (confirmed malicious files). There is Mal/Generic-R as well for low risk files such as hack tools.

The ML/PE detections are not produced by the AV engine (Sophos SAVI) but are produced by the InterceptX pre-execution machine learning. Third party vendors will not have access to that. They will have to complement the Sophos engine with other technologies. If they rely solely on Sophos, stay away from this product.
 
  • +Reputation
  • Like
  • Applause
Reactions: likeastar20, JB007, simmerskool and 3 others

Similar threads

Brownie2019
    • Like
Sophos Scan & Clean Free
Replies
8
Views
834
Other security for Windows, Mac, Linux
roger_m
R
Trident
    • +Reputation
    • Thanks
New Update Announcing End of Life for Kaspersky Engine in Harmony Endpoint
Replies
14
Views
1,909
Other security for Windows, Mac, Linux
Trident
Trident
Brownie2019
    • Like
On Sale! Sophos Home Premium 1-Year License - 24,97€
Replies
2
Views
650
Discounts and Deals
Harputlu
Harputlu

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top