Huawei HiSec Endpoint Achieves Perfect Score in AV-TEST Advanced Threat Protection (ATP) Test

[Beijing, China, November 5, 2025] German third-party security evaluation authority AV-TEST has released the latest Advanced Threat Protection (ATP) test results. Huawei HiSec Endpoint, with its comprehensive protection capabilities, achieved full scores in all 10 core tests and successfully passed the certification with outstanding performance. This result not only confirms Huawei HiSec Endpoint's technological leadership in advanced threat detection but also provides a trusted endpoint security solution for critical scenarios such as enterprises.

AV-TEST ATP testing focuses on "simulating real-world attack scenarios," targeting malware with high stealth and adversarial capabilities. The 10 tests cover the entire attack lifecycle, each with stringent performance and effectiveness thresholds. Huawei HiSec Endpoint leverages four core technical advantages to achieve precise prevention and control of stealthy malware, which serves as the key support for its perfect score in the AV-TEST ATP test:

Firstly, dual engine collaborative detection. HiSec Endpoint adopts a collaborative architecture of "static virus detection+dynamic analysis". The static side deeply verifies file integrity through the self-developed next-generation AV engine CDE (Content based Detection Engine); The dynamic side relies on the exclusive end-to-end memory threat tracing engine GSP (Graph Streaming Process Engine) to detect the real-time memory loading situation and capture the hidden malicious module injection process. Dual engine linkage accurately blocks malicious programs.

Secondly, full link memory tracking. HiSec Endpoint builds the capability of "full stack data dotting+dual-mode memory detection". On the one hand, real-time tracking of abnormal memory writes in system processes such as process creation and code injection through kernel level probes; On the other hand, the innovative end cloud linkage memory detection technology supports AI clustering for memory fingerprint recognition on the end side, while the server side continuously aggregates samples from the entire network, conducts AI clustering training and model optimization, and continuously evolves memory threat perception capabilities, making highly concealed file free execution situations nowhere to hide.

3、 Intention analysis. The Agent is equipped with a high-performance GSP engine, which builds a system "shadow map" in protected memory, comprehensively covering routine operations such as processes, files, registry, HTTPS communication, and accurately capturing hidden scenarios such as memory access, thread hijacking, and process injection.

4、 Deep threat handling. After HiSec Endpoint detects a threat, the GSP engine outputs a real-time threat propagation subgraph and performs deep processing along the graph. In addition to basic malicious process termination and suspicious file isolation, it also supports fine-grained operations such as registry key item recovery, malicious plan task deletion, and resident service uninstallation, completely eradicating the long-term resident traces of malicious programs and effectively balancing protection effectiveness and system stability.

The full score of AV-TEST ATP test is a direct confirmation of Huawei's HiSec Endpoint technology strength. In the future, with the evolution of AI attack technology, Huawei will continue to iterate its security capabilities, making every terminal a "security fortress" in the digital world.