How does Deep Security collect suspicious objects for analysis?

Deep Security collects suspicious objects for analysis primarily through automatic submission from protected agents. This means that the agents installed on the endpoints are designed to monitor the system for potential threats and anomalies. When these agents detect suspicious objects, they can automatically send this information back to the Deep Security Manager for further analysis. This automatic process streamlines threat detection and response, minimizing the potential for human error and expediting the investigation of threats.

This approach ensures that the security posture is constantly monitored and updated in real time without needing manual intervention. It allows for a quicker reaction to identified threats, significantly improving the overall efficiency of the security operations. By relying on automated submissions, Deep Security enhances its ability to respond to emerging threats promptly and effectively.