EN
Contact Sales Request a PoC
SOLUTIONS · ONE ENGINE · EVERY PATH

Protect
every path content takes into your organization.

Every ingress path needs a different defense. File gateway and file server: SLF. On-premises email: SLE. Cloud email: DISARM. Sanitization and intelligence: SLCDR and ConTI — all powered by one MARS engine.

SecuLetter's four products (SLF, SLE, DISARM, SLCDR/ConTI) unified across file and email paths
HERO · SOLUTIONS 1280 × 960 · 4:3 · PNG /images/page-hero/solutions.png
PATHS · 01

Pick the path you need to lock down.
Then layer on the rest.

External content reaches your organization through two primary paths — the file path and the email path. Place the right product on each, then layer the cross-path options (SLCDR, ConTI) where you need them.

PATH 01 FILE · file gateway · file server · OT

When files cross network segments.

Inline file gateway for cross-network transfer, document repositories, web uploads, and OT segments. Before a file ever opens, MARS disassembles its structure — block if malicious, pass if clean.

Where it fits
Cross-network file transfer · Document repository · Web portal upload · Public sector and finance internal networks
Throughput
49,000–315,000 files/day
Representative reference
National Health Insurance Service — 100,000 citizen documents/day
Explore SLF
PATH 02 EMAIL · On-Prem · Cloud

Before staff open attachments or click links.

On-premises mail server? Choose SLE. On Microsoft 365 or Google Workspace? Choose DISARM. Same MARS engine — different deployment shape.

SLE · On-Prem

In front of the mail gateway.

Sits in front of the existing mail gateway. MARS inspects attachments and body URLs before they reach the recipient — 12-second average analysis with no perceptible mail delay.

Throughput
160,000–912,000 emails/day
Reference
LIG Nex1 · Korea Investment & Securities
SLE details
DISARM · Cloud

Microsoft 365 and Workspace API.

API-native integration for Microsoft 365 and Google Workspace. Deployed in minutes — no MX changes, no servers to stand up. Covers password-protected archives, BEC impersonation, and retroactive inbox rescans from the cloud.

Deployment
Cloud API · minutes to deploy
Reference
IMM Investment · MOA MOA · NKH Solution
DISARM details
CROSS-PATH · 02

Two layers that work across every path.

Plug SLCDR and ConTI into SLF, SLE, or DISARM as modules — or deploy them standalone.

CDR · SLCDR

SecuLetter CDR

Sanitization (path-agnostic option)

Strips macros, scripts, embedded OLE objects, ActiveX, DDE, and malicious links at the structural level, then reassembles with the original layout intact. Comments and hyperlink schemas preserved.

  • 309+ file formats supported
  • 34 ms per file — no workflow drag
  • Comments and hyperlink schemas preserved
  • CFB and OOXML covered side by side
Korea Insurance Development Institute (KIDI) · DAOL Savings Bank SLCDR details
INTEL · ConTI

ConTI

Threat intelligence (path-agnostic option)

Aggregates first-party detections across 100+ deployments to extract new techniques, IOCs, and campaigns. Integrates with national CERT and VirusTotal feeds and distributes automatic blocking rules.

  • First-party detection aggregated across 100+ deployments
  • Integrated with national CERT and VirusTotal feeds
  • New techniques become blocking rules automatically
  • Plugs into SOC, SIEM, and IR workflows
Security research team · weekly analysis · CVE briefs ConTI details
MATRIX · 03

Compare the four products at a glance.

Capability SLF SLE DISARM SLCDR ConTI
Primary ingress path File gateway, file server, upload In front of mail server Microsoft 365 / Workspace Web portal, public-service upload Common to all paths
MARS engine Included Included Included Included Data source
Detection (verdict) Standard Standard Standard Optional
Sanitization (CDR) Optional Optional Standard Standard
Throughput 49K–315K/day 160K–912K/day API scale 34 ms/file
Deployment shape Appliance Appliance API (minutes) Module or standalone Module or standalone
Representative reference National Health Insurance Service LIG Nex1 IMM Investment KIDI Security research team
ARCHITECTURE · 04

One MARS engine powers every path.

Whether the content arrives as a file or as an email, the same engine runs the same pipeline — disassemble, decide, sanitize, aggregate intel. The products are simply different deployment shapes of that pipeline.

PATH · FILE File gateway and file server Document repository, web upload, OT PATH · EMAIL / ON-PREM In front of mail server Finance, public sector, defense SMTP PATH · EMAIL / CLOUD Microsoft 365 and Workspace API integration deployed in minutes APPLIANCE SLF APPLIANCE SLE API DISARM CORE · REVERSE ENGINEERING MARS engine Disassemble · decide · reassemble 309 FORMATS · 34ms/FILE CROSS · 01 SLCDR Sanitization layer Macros, embedded OLE, scripts stripped CROSS · 02 ConTI Intelligence layer IOCs, campaigns, blocking rules OUTPUT Clean files · sanitized documents · detection telemetry → Internal network · inbox · SIEM · SOC
Left: three content ingress paths. Center: per-path deployment shapes (SLF, SLE, DISARM) entering the MARS engine. Upper and lower right: path-agnostic layers (SLCDR sanitization, ConTI intelligence). Every product runs on the same engine, the same format parsers, and the same verdict logic.
  • MARS core — reverse-engineering engine
  • Gateway products — per-path deployment
  • Layered options — path-agnostic (module or standalone)
NEXT STEP

Decide which path to harden first —
in a one-hour working session, we map it with you.

We walk through your current file-transfer architecture, mail gateway, and cloud tenant — and draft which product goes where. In the same session we lock in the PoC and benchmark (BMT) schedule.

Request a PoC View deployment guide
  • First response within one business day
  • PoC runs 2–4 weeks on your real files
  • NDA can be signed on the spot