OPSwat

What is OPSwat?

OPSwat is a file security platform specializing in content inspection and sanitization for files moving across organizational boundaries. Its core capabilities include multi-scanning, which runs submitted files through 30 or more antivirus engines simultaneously and aggregates the verdicts into a single confidence score, and Deep Content Disarm and Reconstruction (CDR), which strips potentially malicious active content from documents and files and rebuilds clean versions without affecting the visible content. OPSwat also provides sandbox analysis for behavioral inspection of executable files, and its MetaDefender platform can be deployed at email gateways, web proxies, file upload portals, and removable media inspection stations. This makes it particularly relevant for organizations in regulated industries or critical infrastructure sectors where the risk of introducing malware through file transfers is a significant concern.

How does OPSwat work with Qevlar?

Qevlar integrates with OPSwat to analyze suspicious files encountered during automated investigations. When an alert involves a file of unknown provenance, Qevlar can submit it to OPSwat's multi-scanning engine to obtain a rapid, high-confidence verdict based on the consensus of multiple detection engines.