网络检测和响应解决方案
Fortinet NDR 解决方案融合 AI 驱动分析和人工分析技术,以检测和响应已知和未知的网络威胁。
免费产品演示
概述
作为 Fortinet SecOps 平台组件之一,FortiNDR Cloud 和 FortiNDR 均支持灵活部署,赋能安全团队高效检测、优先排序、调查、猎捕和响应各类网络攻击。借助基于 AI 的检测技术和专家分析,安全团队可及早发现攻击者行为证据,实现快速有效响应。
FortiNDR Cloud 全面构建无代理网络可见性
网络检测和响应同时搭载 AI 分析、人工分析和网络流量行为分析功能,无需额外安装代理组件即可快速追踪恶意活动轨迹。借助元数据分析优势,FortiNDR Cloud 支持高保真检测,有效提升安全事件响应能力。FortiNDR Cloud 是一款 SaaS 产品,旨在满足您的架构和安全需求。
FortiNDR:适用于物理隔离环境
任务关键型基础设施和物理隔离环境,通常要求严格的保密性和合规性。FortiNDR 可在隔离环境中实现持续安全运行,同时提供 IT/OT 网络流量全面可见性。该解决方案搭载 AI 驱动的网络流量分析和基于文件的分析功能,支持事件调查自动化和高级威胁实时识别,有效检测长期潜伏于网络的顽固威胁。
协同事件响应
FortiNDR 解决方案高效赋能安全团队,仅需轻点鼠标即可实现检测模式、调查模式和威胁猎捕模式的快速切换。FortiNDR 解决方案无缝集成 Fortinet Security Fabric 安全平台以及 EDR、SOAR、SIEM 、XDR 等众多第三方安全工具,助您实现调查、分类和修复自动化。
功能与优势
FortiNDR Cloud 和 FortiNDR 同时搭载 AI/ML分析、行为分析和人工分析优势功能,可快速分析含加密流量在内的网络流量,高效检测恶意行为的同时显著减少系统告警误报。
AI 驱动的检测
支持监督和无监督式 AI/ML 持续分析网络元数据
简化威胁猎捕
自动化调查和引导式 Playbook 加快事件分类和响应
协同响应
与 Fortinet Security Fabric 安全平台和第三方供应商解决方案无缝集成,实现自动响应
FortiGuard 赋能的威胁情报
基于机器学习(ML)和规则的检测由 FortiGuard Labs 威胁情报提供强劲支持
专为 OT 网络设计
作为一款 OT 感知解决方案,FortiNDR 支持工业安全和 OT 恶意软件检测选配功能
降低运营成本
FortiNDR Cloud 引导式 SaaS 显著降低网络检测和响应管理成本及维护成本
企业分析师权威认可
Fortinet SecOps Fabric ESG 经济验证
Fortinet 安全运营解决方案量化优势
随着企业的不断发展、新技术的不断涌现以及网络犯罪分子持续引入更多复杂攻击,安全领导者及其团队在保护组织网络方面面临重重挑战。企业战略组(Enterprise Strategy Group)研究团队在最新发布的报告中,详细介绍了企业部署 Fortinet 安全运营解决方案后获得的诸多优势,包括提高运营效率和构建更有效的风险管理体系。
下载报告 »
FortiGuard AI 驱动安全服务
FortiGuard Labs - Fortinet 精英网络安全威胁情报和研究机构,广泛汇集经验丰富的威胁猎手、研究人员、分析师、工程师和数据科学家,全力开发和增强 FortiGuard AI 驱动安全服务,并通过 FortiGuard 专家驱动安全服务为广大用户提供高价值专业帮助。
型号与规格
FortiNDR Cloud 和 FortiNDR 旨在通过分析网络流量追踪攻击者活动轨迹,高效检测可能已成功躲避传统安全解决方案的各类威胁。Fortinet 网络检测和响应解决方案支持基于云的 SaaS 部署和本地部署两大部署模式。请选择下方选项,了解更多信息。
▼
| 产品功能 | FortiNDR |
|---|---|
| 部署模式 | SaaS |
数据存储位置 |
基于云的部署(美国) |
| 集成组件 | 支持集成 SIEM/XDR/EDR |
数据保留 |
365 天 |
| 传感器 | 硬件—FortiNDRCloud-900F(大型传感器) 硬件—FortiNDRCloud-500F(小型传感器) 虚拟传感器(AWS/Azure/ESXi/KVM) |
| 产品功能 | FortiNDR |
|---|---|
| 部署模式 | 本地部署 — 适用于 OT、物理隔离环境 |
数据存储位置 |
本地 |
| 集成组件 | 支持集成本地 Fortinet Fabric |
数据保留 |
磁盘 |
| 部署模式 | 硬件 — FortiNDR-3500F(中心,独立) 硬件 — FortiNDR-1000F(传感器,独立) VM16/VM32(ESXi/KVM)(传感器,独立) AWS/Azure/GCP/Alibaba(传感器,独立) |
资源
技术参数表
分析报告
白皮书
博客
电子书
解决方案简报
视频
2024 KuppingerCole Leadership Compass for NDR »
Fortinet has been recognized as a “Leader” in KuppingerCole’s latest NDR Leadership Compass.
ESG Economic Validation: The Quantified Benefits of Fortinet Security Operations Solutions »
Improved Security Team Operational Efficiency and Reduced Risk to the Organization, Each by Up to 99%
An Analysis of Attacker Activity through NDR, EDR, and NGFW Data »
This white paper takes a closer look at the valuable insights security teams can gain when they correlate NDR, EDR, and NGFW data across the network.
Strengthen Your Security Posture with Network Detection and Response Technology »
Network detection and response solutions offer AI-driven breach prevention to help your security operations center (SOC) team detect and remediate incidents faster and more efficiently.
Power Greater Visibility, More Productivity, and Faster Responses with EDR, NDR, and NGFW Integration »
By integrating endpoint detection and response (EDR), network detection and response (NDR), and next-generation firewall (NGFW) technology, security teams gain comprehensive visibility, greater productivity, and streamlined response processes.
Understanding Today’s Threat Actors »
Insights from Incident Responders and Tips for Protecting Your Organization
Consolidate Cybersecurity Vendors to Accelerate Detection and Response »
Use Extended Detection and Response (XDR) as a Unifying Architecture
Unifying Your Detection and Response Efforts »
Unifying detection and response efforts improves response times while enhancing SOC productivity. Read more.
Fortinet Named a Strong Performer in the Forrester Wave™: Network Analysis and Visibility, Q2 2023 Report »
Fortinet FortiNDR solutions and give security teams the ability to detect, prioritize, investigate, hunt, and respond to attacks.
Global Electronics Manufacturer Enables Seamless and Secure Remote Working for Key Regional Operation with Fortinet »
Read how Fortinet's products and services enabled an organization to reap the benefits of a highly secure and effective approach to remote access.
How Network Detection and Response Addresses 5 Critical Security Challenges »
Read about a few challenges security operation teams face along with areas of consideration for a successful NDR deployment.
FortiNDR 助您高效检测针对 OT 环境的已知和未知攻击 »
FortiNDR 专为本地、物理隔离和 OT 环境而构建,利用 AI 和 ML 高 效分析网络流量,精准识别已知和未知网络攻击。
Unify Detection and Response across Your Entire Network with FortiEDR, FortiNDR Cloud, and FortiGate NGFW »
By analyzing suspicious activity from multiple perspectives, specifically network and endpoint data, security operations center (SOC) analysts gain better insights and higher-fidelity detections that shed light on unknown attacks so they can halt evolving threats quickly.
Massively Accelerate Time to Detect and Disrupt, Investigate and Remediate with the Fortinet Security Operations Solution »
Fortinet Security Operations Solution uses AI and advanced analytics to monitor activity across users, devices, networks, emails, applications, files, and logs and detect anomalous or malicious actions that humans may easily overlook.
Quickly Respond to Attacks Across Your Network »
As attackers become more adept at hiding their activities in network traffic, security teams need a solution that analyzes and correlates network artifacts to spot potentially malicious activity.
Find Hidden Threats Using Fortinet Network Detection and Response Solutions »
The Fortinet network detection security solutions provide the industry’s most advanced AI-enabled network-based threat detection capabilities that improves SOC teams’ ability to rapidly identify and respond to sophisticated threats.
Demo: FortiNDR Cloud integrates with FortiGate NGFW »
Watch as Jeremy Hubble, Product Manager for FortiNDR Cloud, demonstrates how FortiNDR Cloud integrates with FortiGate NGFWs, allowing security analysts to ban impacted IP addresses.
FortiNDR Cloud: Detection Triage »
In this video tutorial, FortiNDR Cloud Technical Success Manager (TSM), Scott Hall walks through the process for triaging FortiNDR Cloud detections.
FortiNDR Cloud: Entity Panel Overview »
Watch as FortiNDR Cloud Technical Success Manager (TSM), Scott Hall, provides an overview of the FortiNDR Cloud Entity Panel and discusses how Entity information is collected and used throughout the platform.
FortiNDR Cloud Technical Demo »
FortiNDR Cloud Technical Demo
