WWT's Cylance Lab exists to provide a sandbox environment that can be used to evaluate the Cylance solution suite across a wide variety of endpoints, including both Windows and Unix-based operating systems. There is also an attack machine, running Kali Linux, with which to test the efficacy of these tools using benign, non-weaponized malware.
Cylance uses artificial intelligence (AI) to deliver security solutions that change how organizations, governments and end-users approach endpoint security. Cylance’s security solutions combine AI-driven predictive prevention with dynamic threat detection and response to deliver full spectrum threat prevention and threat visibility across the enterprise.
Cylance’s next-generation antivirus product, CylancePROTECT, delivers industry-leading malware prevention powered by AI, combined with application and script control, memory protection and device policy enforcement in order to prevent successful cyber attacks.
Augmenting CylancePROTECT prevention, CylanceOPTICS is an endpoint detection and response (EDR) component that enables easy root cause analysis, threat hunting, and automated threat detection and response. Unlike other EDR products that require organizations to make a significant investment in on-premises infrastructure and/or stream data to the cloud continuously, and employ highly-skilled security resources, CylanceOPTICS is designed to automate threat detection and response tasks using existing resources.
You will access the environment using a Windows-based jumphost from which you can browse web consoles, open RDP/SSH sessions, etc. (see topology below).