FortiNDR (BYOL) Network Detection Response - Central Managment
FortiNDR is Fortinet's Network Detection and Response technology. FortiNDR has extended and added features to detect Network Anomalies with auto and manual mitigation techniques
ExploreProduct Description
Overview
FortiNDR is the first Fortinet Network Detection and Response product from Fortinet. Apart from the Virtual Security Analyst(TM) with rapid malware detection technology based on neural networks, FortiNDR has extended features to detect Network Anomalies with auto and manual mitigation techniques. FortiNDR can passively sniff traffic as well as accepting files input from Fortinet fabric devices such as FortiGate and FortiMail. FortiNDR is the next generation of Fortinet breach detection technology, using both ML and Artificial Neural Networks (ANN) which can detect network anomalies and high velocity malware detection and verdict. This center model AMI will enable central managment/logging/analysis/response with up tp 20 connected sensors.
Highlights
Detect encrypted attack (via JA3 hashs), detect malicious web campaigns visited , weaker ciphers, vulnerable protocols, network intrusions and botnet-based attacks. Profile ML traffic and identify anomalies with user feedback mechanism. Quickly detect malicious files through neural network analysis including NFS file scan shares. Analyze malware scientifically by classifying malware based on its detected features, for example, ransomware, downloader, coinminer, and so on.