Fortinet FortiEDR Endpoint Detection and Response
Real-time, Automated Incident Response
FortiEDR is the only EDR solution that provides both pre- and post-infection protection. With fast moving threats like ransomware, detection just isn’t enough. You need real-time protection to stop the attack and automated actions to prevent it from spreading and clean-up any damage. FortiEDR does this in some amazing ways.
First, they have a patented code-tracing technology that track OS activities in details and identify the suspicious behaviors including in-memory attacks
FortiEDR then halts the attack in real-time, without disturbing the user, before it can do harm and block malicious actions. It stops the attack from ‘phoning home’ and communicating with the attacker, thereby blocking encryption. It also sets up automated responses such as terminating processes that trigger the attack and rolls the system back to a safe state prior to any damage.
It detects all sorts of anomalies. Plus, it monitors any installations that might be happening, checks the process, keeps an eye on it, and lets us know how it’s working.
One of the more valuable features is that it notifies you of any suspicious file on any PC. If any execution or installation or anything is happening, it just alerts you. But not only that, it also blocks the execution until you allow it. You just check whether the execution is legitimate or not, and then approve it or keep it blocked. This is a nice, and reassuring bit of control. The ability to get forensic details, and also memory exfiltration are also very handy, enabling the user to analyze the data separately after an incident.
FortiEDR can run constantly, 24/7. It is quite stable. Plus, it is very easy to scale to any size. It settles right in to the Fortinet Security Fabric alongside it’s ‘co-workers’ such as FortiGate, FortiNAC, FortiSandbox, etc in keeping your network happy and undisturbed. And it does so with characteristic, and above-average transparency and simplicity. It is well-positioned to take on the growing field of competitors in EDR given Fortinet’s gearhead-pure, security-first heritage.
FortiEDR Cool Features
|Superb ease of setup and use|
|Highly and easily scaleable|
|System vulnerability mitigation|
|Rogue device detection and control|
|Detailed memory exfiltration|