Any.Run Reviews

The tool is very easy to use and very fast. I was astonished when I first used it because I was accustomed to sandboxes taking very long to boot and then being very slow. Anyrun was quite the opposite. It's by far the best sandbox I have used yet.

I haven't observed any negative aspects of anyrun.

Investigating potential malicious files or urls becomes very easy with it.

- Any.Run allows to quickly analyze and research malicious or suspicious file and URLs.

- Solution is easy to use and gives first results almost immediately after running a task.

- Any.Run allows to rapidly change operating system parameters and set of predefined tools/applications.

- Tasks can be restarted as many times as required.

- With tasks history it’s possible to go back to previous analysis and even restart it with different parameters.

- Extensive reports are generated automatically.

- Absence of Linux in task configuration - we can’t simulate running a file in Linux, and it would be very useful tu us.

quickly analyze and research malicious or suspicious file and URLs.

Any.Run excels at breaking down and comprehending malware, making it an essential component of my cybersecurity arsenal as someone deeply entrenched in the field.

Missing features like bare metal sandbax, hypervisor based inspection etc. for more evasive malwares.

Any.run provides detail report on malware behaviour, helps you extract the IOCs and intel required to understand malware behaviour and build mitigation.

Any.Run is easy to use and fast to test malware samples. It has a very intuitive interface.

There are a lot of configuriton options. Make sure you understand what they all do.

We used to try to keep our own sandbox running for malware testing. It was too much work and was always out of date. This is a much better way to quickly test files for malware.

The interactive sandbox shows each process invoked and the variety of samples that Anyrun can take in.

More API coverage/Integrations are needed.

Phishing email Investigations, Endpoint file analysis. It helps us determine the file's reputation.

Fast result, when I send an email, the Customer Support answers fast.

I cannot find explanations for some terms.

to check links and attachments

Any.Run executes files and URLs in a secure isolated environment, allowing us to observe its behavior in real time. This provides valuable insights into how the threat might interact with our system and network.

Any.Run is limited in its ability to analyze certain types of threats, such as those that rely on social engineering or exploit vulnerabilities in specific software applications

Any.Run enables the analysis of unknown or suspicious files, providing insights into their behavior, including network activity, file system changes, and API calls. This information helps us understand the purpose and capabilities of the malware, allowing us to develop effective countermeasures.

Easy to use and easy to review what has occured.

Pricing seems high for a charity like ourselves, however we are allowed the free version,

Removes the risk of infection when analysing malware or suspicious URLs from our own devices. Also removes the need to develop a sandbox.

It houses a host of great features that my teams leverage on a daily basis, specifically the ability to extract processes and IOC's to then leverage in our own security solutions and the reports that can be exported always break things down nicely, as well as mapping to the Mitre Att&ck framework.

The recent addition of a ChatGPT feature as well really helps give context to the analysis.

A great solution to use in the Cyber Security industry and a must for mature Op's Centres to use.

Nothing really, my only slight suggestion would be to potentially look at bringing one or two team management features into the hunter license, but that's not a major issue considering the functionality of the solution.

Many of the incidents that are generated within security solutions come with some IOC or file that the security operations team needs to evaluate and as such any.run is on hand to allow us to do this in a safe and private environment and then generate additional information in order further an investigation and provide a higher standard of report to the client.

Any Run provides a complete sandbox, offering detailed reports on threat execution and the behavior of specific software/sites submitted for testing. The reports guide the creation of network and antivirus rules through IOCs, as well as generate a detailed and exportable report.

Depending on the plan that was contracted, limitations on file uploads can cause some inconveniences. Furthermore, there are still Windows 7 machines in the more basic plans. I believe that all plans should include the option to run Windows 10, even if the file upload size is limited.

Sandbox and malware analyses are solved by Any Run.