Skip to content Skip to navigation Skip to footer

FortiDeceptor

Deception-based Breach Protection Deceive, Expose and Eliminate External and Internal Threats

FREE PRODUCT DEMO
FortiDeceptor banner background banner dots

Overview

In the evolving threat landscape, security leaders are concerned about maintaining business resiliency in the face of cyber threats including ransomware, zero-day attacks that target legacy systems, and lateral attacks. These threats don't just affect IT networks, they can have an impact on interconnected OT networks as well. According to Verizon’s 2021 Data Breach Investigation Report, four-fifths of breaches found were from external actors; the remaining one-fifth involved internal actors. Reactive security solutions focus on protecting either external threats or internal threats, but not both.

Based on deception technology, FortiDeceptor complements an organization’s existing breach protection strategy. As a pro-active security solution, it is designed to deceive, expose and eliminate external and internal threats early in the attack kill chain before any significant damage occurs.

 

FortiDeceptor Models and Specifications

FortiDeceptor offers both hardware and virtual appliance that allows flexibility for any organization to deploy in the campus and into the cloud.

 

導覽:

Hardware Appliances

Form Factor
1 RU
Max VLANs
128
港口
4 x GE (RJ45), 4 x GE (SFP)
Default RAID level
1
Power Supply Unit
Dual PSU optional

Virtual Machines

The virtual appliance of FortiDeceptor can be deployed on VMware and KVM platforms.

Max VLANs
128
港口
6 virtual network interfaces

導覽:

Fortinet is proud to announce that, for the second consecutive year, we have been recognized as a Customers’ Choice in the April 2021 Gartner Peer Insights ‘Voice of the Customer’: Network Firewalls report.

The Gartner Peer Insights Customers’ Choice is a recognition of vendors in this market by verified end-user professionals, taking into account both the number of reviews and the overall user ratings. To ensure fair evaluation, Gartner maintains rigorous criteria for recognizing vendors with a high customer satisfaction rate. 

As an integral part of the Fortinet Security Fabric, our FortiGate Next-Generation Firewalls (NGFWs) enable a Security-driven Networking approach to protect any network edge and any user at scale, while ensuring high performance. And powered by Fortinet’s custom built Security Processing Units (SPUs), FortiGate NGFWs offer the industry’s highest security compute rating.

With FortiGate NGFWs, organizations can:  

Manage internal  and external  security  risks: FortiGate NGFWs provide complete visibility into applications, threats, and networks to keep operations running and ensure business continuity. Further, network-based segmentation stops lateral threats and protects against application vulnerabilities with enhanced AI/ML powered by FortiGuard services to thwart cyberattacks.  

Achieve  optimal ROI through consolidation: FortiGate NGFWs seamlessly converge and accelerate networking and multiple security functions into a single solution to reduce cost and optimize user experience. 

Improve operational efficiency: Fortinet’s Fabric Management Center streamlines operations across Security Fabric and extends beyond to 400+ ecosystem integrations with a consolidated view to simplify enterprise-wide workflows.

Here is a small sampling of the top reviews posted by Fortinet customers on the Gartner Peer Insights website*:

★★★★★
"Stable and Reliable Firewall" —  Cloud Infrastructure Engineer  in the  Finance Industry, Firm Size: 50M-250M USD
Overall user rating: 5/5 stars
"We use FortiGate in our company's HQ and many of the branches across the country. For a company that deals mainly with sensitive customers data, we needed to make sure that our networks are protected by the best firewall solution that's available (also thanks to Gartner reviews)." 

★★★★★
Tons Of Value in a Small Package—  Director  of  IT  in the  Retail IndustryFirm Size: 500M-1B USD
Overall user rating: 5/5 stars
"We decided to deploy the full Fortinet network stack including FortiGate 60E's to all 90+ of our retail locations. We further deployed FortiGate 200E's in HA pairs to all datacenter locations. These UTM appliances are some of the best and most feature rich I have ever used." 

★★★★★
Delivered What We Were Looking For— VP, Deputy CIO in the Finance Industry, Firm Size: 1B-3B USD
Overall user rating: 5/5 stars
“Our experience with implementing this solution has been very satisfactory. We went with Fortinet for price and simplicity and have received what we were looking for." 

★★★★★
"Strong Firewall Solution That Protects Your Business Systems" — Programmer  in the  Finance Industry, Firm Size: 50M – 250M USD 
Overall user rating: 5/5 stars

"Very easy to implement and configure, especially if you already have other Fortinet products in your network they all bind in to the one "security fabric" and provide a great overview of all your network devices and events in your network. Also the price is superb for such product."

★★★★★
"NGFW That Needs To Be In Your Company" — PHP Backend Developer  in the Finance Industry, Firm Size: 50M – 250M USD 
Overall user rating: 5/5 stars
"FortiGate NGFW is the main guard of our IT infrastructure. All network goes through it. It can easily handle all our traffic. Now, most of the employees are working from home so VPN is getting hit really bad, but that is not a problem for FortiGate."

導覽:

FortiGuard Security Services included in FortiDeceptor's ARAE engine

FortiDeceptor Anti-Reconnaissance and Anti-Exploit Service (ARAE) correlates attacker activities and integrates contextual intelligence through FortiGuard services mentioned below, resulting in single pane timeline-based threat campaign.

 

防毒

FortiGuard 防毒可阻斷最新病毒、間諜軟體以及其他內容層面的威脅。它採用行業領先的進階偵測引擎來阻止不斷變化的新威脅在您的網路中獲得據點、存取網路中寶貴的內容。

入侵防護

FortiGuard IPS 透過偵測威脅並在威脅侵入到網路裝置前進行封鎖,以此抵禦最新的網路入侵。

網頁篩選

透過對惡意、被入侵或不當網站的存取封鎖來保護您的組織。

現今的針對性攻擊可能來自組織的外部或內部。進階威脅欺騙是在攻擊能完成其完整生命週期之前提供早期偵測及回應的關鍵。此功能完整的 FortiDeceptor 展示為使用者提供了集中管理誘餌和引誘的體驗,具有針對威脅活動的可執行可視性,並能夠輕鬆地與 FortiGates 整合以阻止這些攻擊。

How to Deploy Linux Decoy
FortiDeceptor ARAE and Fabric Integration
FortiDeceptor SCADA Demonstration
FortiDeceptor Integration with FortiNAC to Isolate End Device
FortiDeceptor Integration with FortiSIEM for Incident Investigation and Response

Product Details

Using FortiDeceptor, organizations can rapidly create a fake environment that simulates the real network and assets. Through the automatic deployment of decoys and tokens, the deception network seamlessly integrates with an existing IT/OT/IoT/Cloud infrastructure to lure external and internal attackers into revealing themselves. FortiDeceptor can serve as an early warning system by detecting an attacker’s activity and the lateral movement of a broader threat campaign. The threat intelligence gathered from the attacker can be applied automatically to inline security controls to stop attacks before any real damage is done.

Features and Benefits

Simple Management

Centrally manage a distributed deployment of FortiDeceptor and intelligent discovery and automated deployment of pre-built or custom decoys

Unified IT-OT breach protection

Lure attacks away from critical assets across both IT and OT environments

 

Improved Security Posture

Protects against both threat actors and their tactics e.g. malware, ransomware via VirusTotal and FortiSandbox integration

Actionable Visibility

A GUI driven threat map quickly uncovers threat campaigns targeting your organization

 

Automated Protection

Protects against both threat actors and their tactics e.g. malware, ransomware via VirusTotal and FortiSandbox integration

FortiDeceptor: Deception-based Breach Protection News

FortiDeceptor v4.0 Release

FortiDeceptor expands support of new decoys for both OT and IoT, and lures to include HoneyDocs. It also includes new malware detection and contextualization via VirusTotal and FortiSandbox integration, and improvements to existing detection with network responder and for ransomware. Review the latest release notes for more information.

FortiDeceptor v3.3 Release

FortiDeceptor expands support of OT decoy profiles including Rockwell, Siemens and others. It also includes broader Fortinet Security Fabric integration for automated threat response, threat visibility, and threat hunting. Review the latest release notes for more information.

FortiDeceptor v3.2 Release

FortiDeceptor provides intelligent provisioning and auto-deployment of decoys and lures, and supports deployment in air-gapped networks. For more information, please review the latest release notes.

Building a Cybersecurity Workforce

Advanced training for security professionals, technical training for IT professionals, and awareness training for teleworkers.

學到更多