Threat Analysis

On-demand access to Avira's threat intelligence. Query the Avira Protection Cloud. Evaluate file hashes in real-time. Upload files for analysis, query URLs for threat classification.

Cloud Sandbox API

The Avira Cloud Sandbox API enables security vendors and service providers to submit files and receive detailed threat intelligence reports containing a complete threat assessment. It provides the security industry with a powerful and scalable malware analysis service.

The Avira Cloud Sandbox utilizes advanced file analysis, deep inspection and dynamic detonation technology to develop detailed threat intelligence.

The Cloud Sandbox API delivers a detailed, file-specific, threat intelligence report, which contains valuable, actionable intelligence. Within this report is a detailed classification of the file, information on the techniques, tactics and procedures (IoCs) present in the threat, and a description of how and why the submitted file was identified as clean, malicious, or suspicious.

Features

Data-privacy
Avira Cloud Sandbox is built
to protect customers’ data.
It is specifically designed to
handle third party data and
meet the exacting needs of
GDPR compliance.

Unlimited-scale
Leveraging the power of
Amazon Web Services, it is  designed to scale beyond the needs of a single enterprise.

Zero-day protection
The service helps provides
protection against unknown
threats using some of the most
advanced cloud-based
analysis modules in
the cyber-security industry.

Secure & award winning
Avira’s dynamic detonation
technology meets the strict security requirements of Amazon Web Services.

Features

Platform agnostic
Accessed using a REST API, architected for both premise-to-cloud and cloud-to-cloud integration.

Real-time response
Powerful hash-evaluation technology and a database of over a billion entries provide immediate comparison with known threats

File upload
Options to upload all or even specific file types and receive the analysis results (malware or clean) within seconds.

On-demand threat intelligence
Benefit from Avira’s threat intelligence database developed on the basis of three decades of malware analysis.

Powerful analytical techniques
Benefit from Avira’s years of experience in machine learning, our powerful cloud scanning engines, and virtualized environments that sandbox and emulate many key OS systems.

Secure and reliable
Delivered from the cloud, it is highly available, reliable, and scalable.

File Reputation API

The File Reputation API enables technology partners to submit a file hash for evaluation or upload a file to the Avira Protection Cloud for analysis.

Hash inquiries are evaluated, and a result returned within tens of milliseconds. If the hash is unrecognized, the suspicious file can be sent to the Avira Protection Cloud for full analysis. 

Using a REST API, file uploads are assessed and a response containing the classification ("malware" or "clean") returned, typically within seconds. Analytical techniques used include a powerful heuristics engine, classification by Avira’s NightVision machine learning system, and behavioral analysis using Dynamic File Analysis. 

Web Reputation API

Avira’s Web Reputation API enables a real-time, site-specific query approach to identifying malicious URLs and inappropriate internet sites. The API provides an on-demand, usage-based alternative to a threat intelligence feed of web reputation data. It is an ideal solution for Security as a Service applications, firewalls, routers, email and web traffic scanning as well as internet content filtering.

Threat classifications provide information on whether a site or domain is blacklisted, contains PUAs, or is safe and clean. Content categorization delivers real time information on the domain compliant with IAB-1, tier 1 and 2.

Features

Threat classification
Includes safe, malware, spam, PUA, phishing and more.

Real-time response
Typically within 10ms.

Content categorization
400 categories compliant with IAB-1, tier 1 and tier 2.

Multi-language support
Requests supported in seven key languages.

Cost effective
Local caching of whitelists and exception lists avoids unnecessary queries.

Platform agnostic
Accessed using a REST API, architected for both premise-to-cloud and cloud-to-cloud integration.

Let's have a chat about how we can offer you a tailored solution...

Have on-demand access to Avira's world-class malware detection and threat intelligence services using a simple API query. Contact your local integration team now:

Contact us