FortiNDR (BYOL) Network Detection Response -Sensor
FortiNDR is Fortinet's Network Detection and Response technology. FortiNDR has extended and added features to detect Network Anomalies with auto and manual mitigation techniques
ExploreProduct Description
Overview
FortiNDR is the first Fortinet Network Detection and Response product from Fortinet. Apart from the Virtual Security Analyst(TM) with rapid malware detection technology based on neural networks, FortiNDR has extended features to detect Network Anomalies with auto and manual mitigation techniques. FortiNDR can passively sniff traffic as well as accepting files input from Fortinet fabric devices such as FortiGate and FortiMail.
FortiNDR is the next generation of Fortinet breach detection technology, using both ML and Artificial Neural Networks (ANN) which can detect network anomalies and high velocity malware detection and verdict. This sensor product enabled a decoupled,distributed and hyber cloud posbility to monitor your network seamlessly via centralized sensor managment and network/security visibility in one center node.
Highlights
Detect encrypted attack (via JA3 hashs), detect malicious web campaigns visited , weaker ciphers, vulnerable protocols, network intrusions and botnet-based attacks. Profile ML traffic and identify anomalies with user feedback mechanism. Quickly detect malicious files through neural network analysis including NFS file scan shares. Analyze malware scientifically by classifying malware based on its detected features, for example, ransomware, downloader, coinminer, and so on.
Distributed deployment and network minitoring