- Enhanced protection against phishing and web intrusion attacks to counter the rising number of incidents worldwide.
- Accurate detection of phishing and web intrusion attacks, with detailed insights, including a comprehensive visual kill chain to pinpoint the origin and associated behaviors of the attack.
- Users can configure Sangfor Endpoint Secure to respond automatically to such attacks, such as terminating malicious processes and deleting malicious files to prevent lateral movement.
Advanced Endpoint Security Solution
Sangfor Endpoint Secure utilizes a different approach to defending systems from malware and APT threats compared to current next-generation Anti-virus (NGAV) or endpoint detection & response (EDR) solutions.
Endpoint Secure provides a holistic response to malware infections and APT breaches across the entire organization's network, with ease of management, operation, and maintenance. The solution is scalable to meet the needs of any organization needing on-premise management, cloud management, or a hybrid solution when it comes to endpoint security, protection, detection, and response.
Sangfor Endpoint Secure Key Capabilities
Phishing and web intrusion protection with automated response
Ransomware Protection and Recovery
- Protects against all types of ransomware through static and dynamic AI-based detection engines.
- Detects suspicious ransomware-related processes and blocks them in as little as 3 seconds to ensure minimal impact on users’ assets.
- Ransomware indicators of compromise are collected from over 12 million devices deployed with Sangfor Endpoint Secure, allowing it to achieve a detection accuracy rate of 99.83%.
- In addition to existing ransomware protections, such as honeypot and RDP two-factor authentication, Sangfor Endpoint Secure provides ransomware recovery capabilities. These include file recovery and recovery via Windows Volume Shadow Copy Service (VSS) snapshot backup to fully secure and restore your data in case of ransomware encryption.
Synergy with Network and Cloud
Endpoint Secure integrates with Sangfor NGAF, IAG, and Cyber Command to enable advanced and coordinated threat detection and response. Threat correlation between endpoint, network, and cloud makes it possible to detect sophisticated threats that are missed by point solutions and produce an integrated evidence chain to streamline post-attack threat hunting and weakness remediation.
Phishing and web intrusion protection with automated response
- Enhanced protection against phishing and web intrusion attacks to counter the rising number of incidents worldwide.
- Accurate detection of phishing and web intrusion attacks, with detailed insights, including a comprehensive visual kill chain to pinpoint the origin and associated behaviors of the attack.
- Users can configure Sangfor Endpoint Secure to respond automatically to such attacks, such as terminating malicious processes and deleting malicious files to prevent lateral movement.
Ransomware Protection and Recovery
- Protects against all types of ransomware through static and dynamic AI-based detection engines.
- Detects suspicious ransomware-related processes and blocks them in as little as 3 seconds to ensure minimal impact on users’ assets.
- Ransomware indicators of compromise are collected from over 12 million devices deployed with Sangfor Endpoint Secure, allowing it to achieve a detection accuracy rate of 99.83%.
- In addition to existing ransomware protections, such as honeypot and RDP two-factor authentication, Sangfor Endpoint Secure provides ransomware recovery capabilities. These include file recovery and recovery via Windows Volume Shadow Copy Service (VSS) snapshot backup to fully secure and restore your data in case of ransomware encryption.
Synergy with Network and Cloud
Endpoint Secure integrates with Sangfor NGAF, IAG, and Cyber Command to enable advanced and coordinated threat detection and response. Threat correlation between endpoint, network, and cloud makes it possible to detect sophisticated threats that are missed by point solutions and produce an integrated evidence chain to streamline post-attack threat hunting and weakness remediation.
World-Class Malware Detection

Use Cases
Operating Systems
Virtualization
Samudera Indonesia's IT Transformation: Powering Logistics Excellence with Sangfor Technologies







Get in Touch With Us
Latest Webinar

Black Hat MEA 2023 | Riyadh, KSA
Sangfor is proudly presenting our latest development on exciting integrated solution offerings at Blackhat MEA 2023 that takes place in Riyadh.
The Future of Endpoint Security is Brighter Against Ransomware
Discover how easy-to-use and lightweight Sangfor Endpoint Secure protects Your business against APTs and ransomware.
Sangfor XDDR 2.0: Better with MDR
Join this webinar to discover Sangfor XDDR 2.0 and learn how it provides all the essential elements to safeguard your organization in today’s threat landscape.
Latest Blog

What is the NIS2 Directive, and How Does it Affect EU Organizations?
The NIS2 Directive is a cyber legislation applied to all EU member states, aiming to improve the cyber resilience with stringent requirements, measures, and penalties.
What is Generative AI in Cybersecurity?
Generative AI offers benefits and risks covering offensive and defensive approaches. Enterprises adopt best practices to combat generative AI threats.
CSAM 2023 – Exploring Cybersecurity for Kids in a Digital World
During the Cyber Security Awareness Month 2023, let’s take a look at some of the main dangers and best practices to ensure the safest cybersecurity for kids.
Latest News

Sangfor Recognized in the Frost & Sullivan Frost Radar™ for SASE, 2023
Sangfor Technologies is delighted to announce its recognition in the Frost & Sullivan Frost Radar™ for Secure Access Service Edge (SASE), 2023.
Sangfor Technologies and Newborn Screening Reference Center Sign Business Agreement at the Third Belt and Road Forum for International Cooperation
Sangfor Technologies and the Newborn Screening Reference Center's crucial agreement paves the way for a nationwide distributed private cloud project.
Sangfor Technologies Launches Secure Access Service Edge (SASE) in Indonesia
Sangfor Technologies, launched Access Secure, an innovative Secure Access Service Edge (SASE) solution, in Indonesia on October 12, 2023.
Frequently Asked Question
You can install Endpoint Secure Protect on a system with another AV or EDR installed. During the installation, you will be asked if there is other anti-virus software installed. If you say “yes”, the installation will ask if you want to continue. If you choose to continue with the installation, the installation will continue in compatibility mode and the Protect agent will automatically disable real-time protection to not interfere with operation of the existing AV agent.
The Endpoint Secure management server includes the NGAF WAF module to prevent web-based attacks. Both the hardware and virtual versions of the management server are assessed by Sangfor’s BlueSecOps Team to determine if any risks or vulnerabilities exist. Security hardening is performed to minimize attack surfaces by closing all unnecessary ports and services.
Yes, you can choose when agent groups or individual agents are upgraded. This gives you flexibility and control to stagger or delay agent upgrades based on organizational needs.