Scaling
Designed as a distributed solution.
Triage was developed with scaling in mind from the start, so increasing your analysis capacity is just a matter of adding more hardware.
Triage is Hatching’s new and revolutionary malware sandboxing solution. It leverages a unique architecture, developed with scaling in mind from the start. Triage can scale up to 500.000 analyses per day, an unprecedented number for a sandboxing service.
Triage is used by a wide variety of companies, ranging from large enterprises to niche security specialists. However, they all share a dedication to keeping their organizations or end-customers safe.
See who benefitsCompanies like Managed Security Service Providers (MSSP) and Security Operations, Analytics & Reporting companies (SOAR)
Companies like Security Operations Centers (SOC) and Computer Emergency Response Teams (CERT)
Starting from scratch isn't the same as starting from zero. Triage leverages Hatching's years of experience in developing sandboxing solutions such as Cuckoo Sandbox. With a completely new architecture, no legacy, and a clear vision in mind from the start, Triage offers users a modern, fast, and scalable sandbox with a comprehensive API.
Triage was developed with scaling in mind from the start, so increasing your analysis capacity is just a matter of adding more hardware.
Triage supports automated malware analysis for Windows 7 and 10, Linux, Android and macOS.
With the Triage monitor, you can watch the detonation of your files in realtime, and you can take direct control of the VM if required.
Sandboxing samples produces a wealth of information, but not all data is relevant. That's why Triage's interface focuses on presenting only information pertinent to the user. And in case you do need access to all the data, or if you want to automate your workflow, there is a comprehensive REST API too.
Just drag & drop your file or archive, and Triage will start unpacking and running static analysis components straight away. Based on this, the best environment for dynamic analysis is selected automatically.
The Triage VMs spin up instantly, and the analysis unfolds itself right in front of your eyes. The interactive live view lets you keep a close eye on the analysis and allows you to take control of the VM at any time.
The report focuses on presenting the most relevant information to the user at once, like the malware configuration that Triage extracts for a continuously growing number of malware families.
With profiles, you can easily save a preset of your desired analysis configuration. Control basic settings like timeout and internet configuration, or select a specific (custom) VM for your profile.
Our packages start at 500 analyses per day and quickly scale up towards
50,000 analyses per day so that our customers never
have to worry about hitting quotas or not being able to perform their
day-to-day work.
Furthermore, for fully automated enterprise workflows, our solution
scales easily towards performing hundreds of thousands of file and URL
analyses per day.
Contact us for bespoke and competitive pricing.
Get in touch to request your Triage private cloud demo environment, and test all of Triage's capabilities. As a service to the security community, individual users and researchers can use Triage public cloud for free.