網路偵測和回應
Fortinet 獲評為 2024 年 KuppingerCole NDR 領導力指南針報告中的領導者
閱讀報告 互動式產品導覽
概述
FortiNDR 雲端和 FortiNDR 是 Fortinet SecOps 平台的一部分,可透過靈活的部署選擇,讓您的安全團隊能夠偵測、優先處理、調查、搜尋和回應整個網路的攻擊。藉由人工智慧檢測與專家分析的力量,安全團隊能及早發現攻擊者行為的證據,從而有效應對 在您的IT/OT/IoT環境中全面實施應對措施。
透過 FortiNDR 雲端實現整個網路的無代理程式可視性
網路偵測及回應結合了人類、行為及基於 AI 的網路流量分析,不需安裝代理程式就能偵測惡意活動的跡象。透過中繼資料分析,FortiNDR 雲端可建立高保真度偵測,從而改善回應。FortiNDR 雲端是一款 SaaS 產品,旨在滿足您的架構和安全要求。
FortiNDR:氣隙環境的理想選擇
任務關鍵型基礎架構和氣隙環境需要符合額外的機密性和合規性要求。FortiNDR 可以在隔離的環境中操作,確保安全營運,同時提供對 IT/OT 網路流量的全面可視性。該解決方案透過 AI 驅動的網路流量和檔案式分析來自動執行調查工作,提供進階威脅的即時識別,包括可能停留在您的網路中的持續性威脅。
協調事件回應
FortiNDR 解決方案讓安全團隊只需點擊幾下,即可從偵測轉向調查,再到回應。FortiNDR 解決方案提供與 Fortinet 安全架構及第三方工具(如 EDR、SOAR、SIEM、NGFW 和 XDR)的互動功能,確保您能自動化執行調查、分級處理及修復作業。
功能與優點
FortiNDR 雲端和 FortiNDR 利用 AI/ML、行為和人為分析來分析網路流量,包括加密流量,以偵測惡意行為同時減少誤報。
AI 驅動的偵測
監督和非監督式 AI/ML 持續分析網路中繼資料
簡化威脅獵捕
自動調查、行動手冊可加速分類和回應
協調式回應
與 Fortinet 安全織網和第三方供應商整合可確保自動回應
採用 FortiGuard 的威脅情資
基於 ML 和規則的偵測由 FortiGuard Labs 威脅情報提供支援
專為 OT 網路設計
FortiNDR 是一款 OT 感知解決方案,可選擇採用工業安全和 OT 惡意軟體偵測功能
降低營運成本
FortiNDR 雲端引導式 SaaS 可降低 NDR 管理和維護成本
企業分析師驗證
2024 KuppingerCole 新型數據路徑領導力指南
Fortinet SecOps Fabric 的 ESG 經濟驗證
KuppingerCole 將 Fortinet 列為 2024 年 NDR 領導者
在KuppingerCole最新發布的NDR領導力指南中,Fortinet獲評為「領導者」。Fortinet NDR解決方案憑藉其在產品、創新及市場影響力方面的領導地位而廣受認可,為安全團隊提供由人工智慧驅動的智能分析能力,能在複雜的混合網路、隔離環境、容器化及雲端環境中,對異常與惡意活動進行關聯分析與識別。
下載報告 »
Fortinet 安全營運解決方案的量化優勢
隨著企業不斷發展,新技術也隨之興起,網路罪犯引入了更複雜的攻擊,資安領導者及其團隊在保護組織網路方面也面臨著各種挑戰。企業策略團隊發佈的新報告詳細介紹了使用 Fortinet 安全營運解決方案的優勢,包括提高營運效率和更有效的風險管理。
下載報告 »
FortiGuard AI 驅動安全服務
FortiGuard Labs 是 Fortinet 的精英網路安全威脅情資和研究機構,由經驗豐富的威脅獵人、研究人員、分析師、工程師和資料科學家組成,其目的在於開發和增強 FortiGuard AI 驅動的安全服務,並透過 FortiGuard 專家驅動的安全服務提供有價值的專家協助。
查看所有服務
Content Security
Web Security
Device Security
Application Security
SOC NOC 安全
型號與規格
FortiNDR 雲端和 FortiNDR 旨在透過分析網路流量,尋找攻擊者活動的警示訊號,以偵測傳統安全解決方案可能忽略的威脅。Fortinet 的網路偵測和回應解決方案可用作雲端式 SaaS 模式或本地、內部部署選項。請選取下列選項以獲得更多資訊。
▼
| 功能 | FortiNDR |
|---|---|
| 部署 | SaaS |
資料儲存位置 |
雲端基礎(美國、歐洲) |
| 整合 | SIEM/SOAR/XDR/EDR/FortiGate 新世代防火牆 |
資料保留 |
365 天 |
| 感測器 | 硬體 - FortiNDRCloud-2540G(超大型感測器) 硬體 - FortiNDRCloud-900F(大型感測器) 硬體 - FortiNDRCloud-500F(小型感測器) 虛擬感測器 (AWS/Azure/GCP/ESXi/KVM) |
| 功能 | FortiNDR |
|---|---|
| 部署 | 內部部署 - 適用於 OT、氣隙環境 |
資料儲存位置 |
內部部署 |
| 整合 | 本地 Fortinet Fabric 整合 |
資料保留 |
視磁碟而定 |
| 感測器 | 硬體 - FortiNDR-3600G(具備全球調查功能的中心) 硬體 - FortiNDR-2500G(感測器,獨立運作) 硬體 - FortiNDR-1000F(感測器,獨立式) VM08/VM16/VM32 (ESXi/KVM) (感測器,獨立運作) 集中管理虛擬機器(中心) AWS/Azure/GCP/阿里雲/OCI(感測器,獨立運作) |
資源
資料表
分析報告
白皮書
部落格
電子書
解決方案簡介
合作夥伴簡報
影片
ESG Economic Validation: The Quantified Benefits of Fortinet Security Operations Solutions »
Improved Security Team Operational Efficiency and Reduced Risk to the Organization, Each by Up to 99%
2024 KuppingerCole Leadership Compass for NDR »
Fortinet has been recognized as a “Leader” in KuppingerCole’s latest NDR Leadership Compass.
Harnessing the Power of Artificial Intelligence and Machine Learning with FortiNDR Solutions »
This report showcases how Fortinet uses AI and ML in its network detection and response solutions, highlighting how the technologies detect advanced attacker techniques and tactics.
An Analysis of Attacker Activity through NDR, EDR, and NGFW Data »
This white paper takes a closer look at the valuable insights security teams can gain when they correlate NDR, EDR, and NGFW data across the network.
Strengthen Your Security Posture with Network Detection and Response Technology »
Network detection and response solutions offer AI-driven breach prevention to help your security operations center (SOC) team detect and remediate incidents faster and more efficiently.
Power Greater Visibility, More Productivity, and Faster Responses with EDR, NDR, and NGFW Integration »
By integrating endpoint detection and response (EDR), network detection and response (NDR), and next-generation firewall (NGFW) technology, security teams gain comprehensive visibility, greater productivity, and streamlined response processes.
Understanding Today’s Threat Actors »
Insights from Incident Responders and Tips for Protecting Your Organization
Unifying Your Detection and Response Efforts »
Unifying detection and response efforts improves response times while enhancing SOC productivity. Read more.
Fortinet Named a Strong Performer in the Forrester Wave™: Network Analysis and Visibility, Q2 2023 Report »
Fortinet FortiNDR solutions and give security teams the ability to detect, prioritize, investigate, hunt, and respond to attacks.
Global Electronics Manufacturer Enables Seamless and Secure Remote Working for Key Regional Operation with Fortinet »
Read how Fortinet's products and services enabled an organization to reap the benefits of a highly secure and effective approach to remote access.
How Network Detection and Response Addresses 5 Critical Security Challenges »
Read about a few challenges security operation teams face along with areas of consideration for a successful NDR deployment.
Detect and Investigate Known and Unknown OT-Based Attacks with Fortinet NDR Solutions »
Fortinet NDR solutions collect network traffic from cloud, hybrid-cloud, IT, and OT infrastructures to identify malicious network activity and files.
Unify Detection and Response across Your Entire Network with FortiEDR, FortiNDR Cloud, and FortiGate NGFW »
By analyzing suspicious activity from multiple perspectives, specifically network and endpoint data, security operations center (SOC) analysts gain better insights and higher-fidelity detections that shed light on unknown attacks so they can halt evolving threats quickly.
Massively Accelerate Time to Detect and Disrupt, Investigate and Remediate with the Fortinet Security Operations Solution »
Fortinet Security Operations Solution uses AI and advanced analytics to monitor activity across users, devices, networks, emails, applications, files, and logs and detect anomalous or malicious actions that humans may easily overlook.
Quickly Respond to Attacks Across Your Network »
As attackers become more adept at hiding their activities in network traffic, security teams need a solution that analyzes and correlates network artifacts to spot potentially malicious activity.
Find Hidden Threats Using Fortinet Network Detection and Response Solutions »
The Fortinet network detection security solutions provide the industry’s most advanced AI-enabled network-based threat detection capabilities that improves SOC teams’ ability to rapidly identify and respond to sophisticated threats.
Demo: FortiNDR Cloud integrates with FortiGate NGFW »
Watch as Jeremy Hubble, Product Manager for FortiNDR Cloud, demonstrates how FortiNDR Cloud integrates with FortiGate NGFWs, allowing security analysts to ban impacted IP addresses.
FortiNDR Cloud: Detection Triage »
In this video tutorial, FortiNDR Cloud Technical Success Manager (TSM), Scott Hall walks through the process for triaging FortiNDR Cloud detections.
FortiNDR Cloud: Entity Panel Overview »
Watch as FortiNDR Cloud Technical Success Manager (TSM), Scott Hall, provides an overview of the FortiNDR Cloud Entity Panel and discusses how Entity information is collected and used throughout the platform.
FortiNDR Cloud Technical Demo »
FortiNDR Cloud Technical Demo
