Which Check Point software blade provides protection from zero-day and undiscovered threats?

The software blade that provides protection from zero-day and undiscovered threats is Threat Emulation. This blade is specifically designed to detect and mitigate threats that have not yet been classified or identified by traditional signature-based methods. When a file is uploaded or downloaded, Threat Emulation analyzes it in a virtualized environment, simulating its behavior to identify malicious activity without risking the actual network or system.

In contrast, other options serve different functions. The Firewall primarily focuses on permitting or blocking traffic based on defined security rules and policies, providing a boundary for network protection rather than specifically targeting zero-day threats. Application Control manages the usage of applications within a network to enforce security policies, but it does not analyze files for undiscovered malware. Threat Extraction works to eliminate potentially malicious content from documents and files before they reach users, thus offering a layer of protection, but it does not detect hidden threats that have not yet been identified in the first place.

Therefore, Threat Emulation stands out as a dedicated tool for proactively addressing the risks posed by new and unidentified threats.