FortiDeceptor

Automated Detection and Response to External and Internal Threats

A New Breach Protection Approach with FortiDeceptor

According to Verizon’s 2018 Data Breach Investigation Report, two-thirds of breaches found were from external actors while the remaining one-third involved internal actors. Unfortunately, today’s reactive security solutions are narrowly focused in either protecting external or internal threats but not both.

FortiDeceptor is based on deception-based technology that complements an organization’s existing breach protection strategy, designed to deceive, expose and eliminate attacks originating from either external or internal sources before any real damage occurs.

 

FortiDeceptor News

FortiDeceptor Product Details

FortiDeceptor allows organizations to rapidly create a fabricated deception network through the automatic deployment of deception VMs and decoys that seamlessly integrate with an existing infrastructure to lure attackers into revealing themselves. FortiDeceptor helps serve as an early warning system by providing accurate detection that correlates an attacker’s activity details and lateral movement that feeds up to a broader threat campaign. Threat intelligence gathered from the attacker can be applied automatically to inline security controls to stop attacks before any real damage is done.

   

Features and Benefits

simple icon

Actionable Visibility

GUI driven threat map quickly uncovers threat campaigns targeting your organization

icon benefits application

Automated Protection

Security infrastructure integration provides real-time blocking of attackers before real damage occurs
checkmark icon

Deployment Ease

Centrally manage and automate the deployment of deception VMs and decoys

FortiDeceptor Models and Specifications


FortiDeceptor offers both hardware and virtual appliance that allows flexibility for any organization to deploy in the campus and into the cloud.

Hardware Appliances

Form Factor
1 RU
Deception VMs
16 generating a total of 256 decoys
Ports
4 x GbE (RJ45), 4 x GbE (SFP)

Virtual Machines

The virtual versions of FortiDeceptor can be deployed in VMware and KVM platforms.

Deception VMs
16 generating a total of 256 decoys
Ports
6 virtual network interfaces

FortiGuard Security Services for FortiGuard Service Bundles

FG Antivirus

바이러스 백신

FortiGuard 바이러스 백신은 최신 바이러스, 스파이웨어 및 기타 콘텐츠 수준 위협을 방어합니다. 업계 최고의 진보된 탐지 엔진을 사용해 새로운 위협과 지능형 위협이 네트워크 내에서 발판을 마련하고 귀중한 콘텐츠에 액세스하지 못하도록 차단합니다.

FG Intrusion Prevention

침입 방지

FortiGuard IPS는 위협이 네트워크 장치에 도달하기 전에 탐지, 차단함으로써 새로운 네트워크 침입으로부터 보호합니다.

FG Web Filtering

웹 필터링

악성 또는 해킹되거나 부적절한 웹사이트 액세스를 차단하여 기관을 보호합니다.

Product Demo

product demo fortideceptor

FortiDeceptor Demo

Today's targeted attacks can originate from both external or internal to an organization. Advanced threat deception is key to providing early detection and response before an attack is allowed to complete its full lifecycle. This fully functional FortiDeceptor demo provides users the experience to centrally manage deception VMs and decoys, with actionable visibility to threat campaigns, and the ability to easily integrate with FortiGates to block these attacks.

Access the demo

FAQs

How does FortiDeceptor work?

Deception VMs and decoys are deployed to simulate real endpoints and servers with services, data and applications. Once a threat actor logs into a deception VM instance, all activities are captured and the security administrator receives an alert. The security team can perform a full investigation, followed with either manual remediation or allow FortiDeceptor to perform automated mitigation.

What deception OS does FortiDeceptor support? 

Currently, FortiDeceptor supports Windows and Linux OS. 

How does FortiDeceptor fit my security infrastructure?

FortiDeceptor is offered as an appliance and VM that meets a wide range of requirements supporting campus to cloud deployments.

How fast can FortiDeceptor be up and running?

Security operators can leverage default VMs to automate the deployment of deception VMs and decoys on Day-1.

How does FortiDeceptor integrate with Fortinet Security Fabric? 

FortiDeceptor natively integrates with FortiGates to automatically quarantine the external or internal attacker. 

How do I test drive FortiDeceptor?

A self-driven FortiDeceptor demo can be found here. You may also request a live FortiDeceptor demo by contacting us here.