Its real cool for mitigating risks of remote machines when you can't control them (i.e. user's home machine or kiosk machine). One snag is that it is only good Wintel platforms.

Basically, an active-x control is downloaded to the client browser; this scans the processes that are running and loks to identify any that are potenitally malicous based on their behaviour rather than on a pattern, or signature basis. This means that it can offer real zero hour protection to systems.

Anyway, there is a version for CSG currently available, and there maybe a version for AGE out later this year. The idea being that you could use a simple wrapper (As you get with CSG) or potentially a fully integrated end point scan version, so taking the results of the wholesecurity scan and defining a filter for them in AGE.

If you haven't seen it yet then goto www.wholesecurity.com and check it out. If you use the Ebay/Google toolbar you are already using WholeSecurity anti-phishing technology.