Very happy with my TRAP appliance
TRAP is being used across our whole organization. We use it in conjunction with PPS, TAP, and PSAT with CLEAR. It saves us about 5 - 10 …
Proofpoint Threat Response Auto-Pull
Proofpoint Threat Response Auto-Pull
Proofpoint Threat Response Auto-Pull
Overview
What is Proofpoint Threat Response Auto-Pull?
Proofpoint Threat Response Auto-Pull (TRAP) enables messaging and security administrators to automatically retract threats delivered to employee inboxes and emails that turn malicious after delivery to quarantine. It is also a powerful solution to retract messages sent in error as...
Recent Reviews
Product Demos
Proofpoint Email Protection Suite – Product Demo
03:48
Product Details
What is Proofpoint Threat Response Auto-Pull?
Proofpoint Threat Response Auto-Pull (TRAP) enables messaging and security administrators to automatically retract threats delivered to employee inboxes and emails that turn malicious after delivery to quarantine. It is also a powerful solution to retract messages sent in error as well as inappropriate, malicious, or emails containing compliance violations and also follows forwarded mail and distribution lists and creates an audit-able activity trail.
With Proofpoint Threat Response Auto-Pull, you can protect your people, data, and brand from today’s threats by:
- Automatically pulling malicious or unwanted messages from an end-users inbox.
- Enriching each message by checking every domain and IP address against premium intelligence feeds.
- Including built-in reporting, showing stats like: Email quarantine success or failures, email retraction read status, targeting by active directory attribute
- Reducing the remediation time needed from hours to minutes.
Proofpoint Threat Response Auto-Pull Features
Incident Response Platforms Features
- Supported: Integration with Other Security Systems
- Supported: Attack Chain Visualization
- Supported: Centralized Dashboard
- Supported: Machine Learning to Prevent Incidents
- Supported: Live Response for Rapid Remediation
Additional Features
- Supported: Automatically pull malicious or unwanted messages from an end-users inbox.
- Supported: Enrich each message by checking every domain and IP address against premium intelligence feeds.
- Supported: Built-in reporting showing things stats like: Email quarantine success or failures, email retraction read status, targeting by active directory attribute
- Supported: Reduce the remediation time needed from hours to minutes.
Proofpoint Threat Response Auto-Pull Video
Email is a primary source of cyber-attacks for many organizations, and it starts with people. Find out how Proofpoint’s multi-layered email security helps prevent, defend, and respond to email attacks quickly and effectively within an organization.
Proofpoint Threat Response Auto-Pull Downloadables
Proofpoint Threat Response Auto-Pull Integrations
- Trellix Email Security
- Splunk Enterprise Security (ES)
- Okta Adaptive Multi-Factor Authentication (MFA)
Proofpoint Threat Response Auto-Pull Competitors
- Palo Alto Networks Cortex XSOAR
- Splunk SOAR
- Microsoft Zap
Proofpoint Threat Response Auto-Pull Technical Details
| Deployment Types | On-premise, Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Windows, Linux, Mac |
| Mobile Application | No |
| Supported Countries | United States, Canada, United Kingdom, Germany, France, Italy, Australia, Japan |
| Supported Languages | English, German, French, Italian, Spanish, Japanese |
Frequently Asked Questions
Palo Alto Networks Cortex XSOAR and Splunk SOAR are common alternatives for Proofpoint Threat Response Auto-Pull.
Reviewers rate Live Response for Rapid Remediation highest, with a score of 10.
The most common users of Proofpoint Threat Response Auto-Pull are from Enterprises (1,001+ employees) and the Banking industry.
Comparisons
View all alternativesCompare with
Microsoft Defender for Endpoint
Compare
KnowBe4 PhishER
Compare
Splunk Enterprise Security (ES)
Compare
Learn More
Cofense Triage
Compare
Learn More
Palo Alto Networks Cortex XDR (Traps)
Compare
Palo Alto Networks Cortex XSOAR
Compare
Arcsight Enterprise Security Manager (ESM)
Compare
Agari Phishing Response
Compare
Huntress
Compare
Reviews and Ratings
 (13)
Reviews
(1-4 of 4)- Popular Filters
Companies can't remove reviews or game the system. Here's why
July 13, 2021
Very happy with my TRAP appliance
TRAP is being used across our whole organization. We use it in conjunction with PPS, TAP, and PSAT with CLEAR. It saves us about 5 - 10 hours per week quarantining emails and evaluating user-submitted emails. We have auto-response templates set up so that user-submitted emails will automatically be replied to with the verdict of their submission.
- It will automatically pull malicious emails from users' mailboxes if they are not detected first by PPS.
- It will evaluate user-submitted suspect phishing emails and reply to the users with the result of the evaluation.
- It will pull emails from users per an admin-submitted CVS file of emails we want to pull.
- It informs admins of the status of its email investigations.
- Would like an Azure virtual machine version of it. Currently, it's only supported on VMware and AWS.
- Configuring authentication certificates on it is not easy.
- It does not work with RSASSA-PSS signed certificates.
December 04, 2019
Excellent last-defense for malicious email
Proofpoint Threat Response Auto-Pull is a lifesaver if all "pro-active" controls fail. It will auto pull messages automatically from users' mailboxes, instructed by the "Targeted Attack Protection" module of Proofpoint. Especially with (spear) phishing, you can prevent a lot of trouble. This is all automatic, although if you really want, you can upload a CSV with the list of messages you want auto pulled.
- Auto pull works great, even with our hybrid situation with 2 on premise exchange organizations.
- Reporting is good, nice graphs of all the actions.
- As threat response auto-pull uses a subset of the full threat response product, the GUI is too bloated.
- It is still only an on premise VM, still waiting for a cloud version.
December 03, 2019
Proofpoint TRAP - Pull malicious emails
Proofpoint TRAP is being used across the entire organization currently. It is deployed centrally and in use across 4 countries. As it is an international product we have a Proofpoint trained team looking after it.
We've found Proofpoint TRAP to be very beneficial to the company so far, it helped us immensely during our last security test.
We've found Proofpoint TRAP to be very beneficial to the company so far, it helped us immensely during our last security test.
- Automatically pulling malicious emails from users inboxes.
- Low admin intervention.
- Reducing remediation time on malicious emails.
- Learning curve is steep.
- Interface can be clunky.
- Some interface items seem counter-intuitive.
October 23, 2019
TRAP helps me sleep at night
We use TRAP enterprise-wide to help remove malicious messages from users' mailboxes. When a brand new threat sneaks by our email security appliance it's far less of a worry since TRAP will pull messages from mailboxes as soon as it starts detecting them!
Update, 6 months later: Proofpoint TRAP remains the MOST HELPFUL tool I've ever used for security incident response.
Update, 6 months later: Proofpoint TRAP remains the MOST HELPFUL tool I've ever used for security incident response.
- Finds malicious messages in users mailboxes that were not previously detected.
- Gives good data about messages post-detection.
- Integrates with AD.
- Removing messages from mailboxes manually requires uploading a CSV in a particular format. More flexibility here would be great.