Sophos Endpoint Security and Control v10.3 was installed in the NSS Labs live stack exploit test harness as part of NSS’ continuous testing of enterprise endpoint protection (EPP) products. Sophos Endpoint Security and Control was subjected to thorough testing for exploit protection at the NSS facility in Austin, Texas, based on the Security Stack: Test Methodology v1.5. NSS test methodologies are available at nsslabstage.wpengine.com. The results presented in this report were obtained via 24×7 continuous testing between March 10, 2015 and March 24, 2015 at the NSS facility in Austin, Texas. This test includes a total of 726 attacks used by threat actors in active campaigns during the course of the test. This test was conducted free of charge, and NSS did not receive any compensation for Sophos’s participation.