{"product_id":"fortinet-fortideceptor-100g-security-appliance-1gbe-desktop-fdr-100g","title":"Fortinet FortiDeceptor 100G - Security appliance - 1GbE - desktop FDR-100G","description":"Fortinet FortiDeceptor 100G - Security appliance - 1GbE - desktop\u003cbr\u003e\u003cbr\u003e \u003cul\u003e\n\u003cli\u003e\n\u003cstrong\u003eEarly threat detection, minimal network impact\u003c\/strong\u003e\u003cbr\u003eFortiDeceptor works by deploying and running decoys from the FortiDeceptor console using available IP addresses. As decoys leverage unused IP addresses across the different network segments, they do not impact network availability and, to the attacker, they seem like an integral part on your network. These IP addresses do not correspond to any real host or device on the network. The FortiDeceptor platform consists of several deception components that together provide an authentic and scalable layer of deception assets that are identical to other assets across your network. These decoys are fake assets, such as industrial control systems, medical devices, ATMs, tank gauges, POS devices, IoT devices, network infrastructure, and more, that run real operating systems and services and generate fake but limited traffic to lure attackers to them, diverting them away from sensitive assets. FortiDeceptor provides an extensive inventory of decoys. You can also 'bring your own decoys' and upload your own golden images. To expand the deception layer event further, FortiDeceptor places breadcrumbs (or tokens) on real endpoints and servers. These are fake documents, files, or fake credentials, that attackers look to leverage to move laterally or encrypt. The breadcrumbs, which are indistinguishable from real files and credentials, are designed to deceive the attacker or malware to laterally move to the decoy. FortiDeceptor immediately detects any use of fake credentials, generates alerts, and automatically isolates the endpoint using built-in endpoint isolation capabilities or security orchestration, automation, and response (SOAR) playbooks.\u003c\/li\u003e\n\u003cli\u003e\n\u003cstrong\u003eAccelerated incident response\u003c\/strong\u003e\u003cbr\u003eThe solution generates high-fidelity, zero false-positive alerts, providing security teams with a unique advantage over malicious activity, and unparalleled visibility to detect and stop attacks, credential thefts, lateral movement, and malware activity. It also provides compensating security control when patching or when other security controls aren't an option. A good example of this is in OT environments where patches aren't available; even when patches are available, the time and effort required for maintenance is arduous. Once a malware or human attacker engages with a fake or a decoy asset, an alert is generated and sent to security information and event management (SIEM), SOAR, or any threat intelligence platform you're using. The decoy then starts capturing and analyzing the activities in real time and generates threat intelligence using eight built-in intelligence engines for detailed and accurate analysis. FortiDeceptor does not require highly skilled security analysts to deploy or manage the solution. It centralizes and automates the entire process - from deception deployment to evidence analytics to quarantined and unquarantined attacks to the implementation of dynamic protection layers.\u003c\/li\u003e\n\u003cli\u003e\n\u003cstrong\u003eProtection against evolving threats\u003c\/strong\u003e\u003cbr\u003eTo combat emerging threats, FortiDeceptor enables on-demand creation of deception decoys based on newly discovered vulnerabilities or suspicious activity, providing automated, dynamic protection across IT, OT, and IoT environments. Implement zero-day protection: attackers often target vulnerable assets first. With FortiDeceptor's advanced outbreak feature, you can now purposefully deploy decoys with recently disclosed vulnerabilities to attract, automatically detect, and quarantine malicious activities early in the kill chain. When a vulnerability is reported by FortiGuard Labs, the vulnerability emulator is automatically pushed as a feed to the outbreak decoy without requiring a software update. Rapid threat hunting to identify indicators of compromise (IOCs): FortiDeceptor's integration with SOAR provides on-demand deception asset deployment, triggered by SOAR playbooks to help hunt and quarantine any malicious activity. When suspicious activity is detected, a SOAR playbook can automatically initiate the deployment of decoys and tokens in that specific segment to help detect an attack and capture intel. In addition, FortiDeceptor offers integrations with leading security tools, as well as with the Fortinet Security Fabric, providing orchestrated threat mitigation and enriched attack intelligence.\u003c\/li\u003e\n\u003cli\u003e\n\u003cstrong\u003eDeception for OT and IoT environments\u003c\/strong\u003e\u003cbr\u003eOT environments are diverse, with numerous, multi-vendor devices and systems often designed without built-in security. Hardening mostly legacy systems via monitoring agents or security patching to mitigate risks is not always an option due to continuity, costs, patch availability, and more. FortiDeceptor's decoys simulate various types of IT, OT, ICS, and IoT devices, as well as critical applications such as SAP and ERP that can be deployed across all levels of the Purdue model. FortiDeceptor works by automatically running active and passive asset discovery, creating asset inventory, and recommending optimized decoy placement across the IT and OT network. The FortiDeceptor Rugged 100G, designed specifically for harsh industrial environments.\u003c\/li\u003e\n\u003c\/ul\u003e FortiDeceptor is Fortinet's non-intrusive, agentless deception platform that puts the power back into the hand of defenders, with the ability to deceive attackers into engaging with fake assets and ultimately revealing themselves.\u003cbr\u003eA force multiplier to current security defenses, FortiDeceptor combines the concept of honeypot with threat analytics and threat mitigation capabilities. This is achieved by distributing a layer of deception assets across the network - decoys and tokens, such as fake keys and files on endpoints and servers - and creating a system of traps that look and operate like any other real asset across IT, OT, and IoT networks, intended to deceive, detect, and isolate known and unknown human and automated attacks.\u003cbr\u003eWith FortiDeceptor, instead of waiting for the threat actor to make a mistake and then detect their presence, you can now embrace an active defense approach where any step the attacker takes - whether they try to escalate privileges or run malware - becomes an opportunity for you to detect them.\u003cbr\u003e \u003cul\u003e\n\u003cli\u003eReduces dwell time and false-positives\u003c\/li\u003e\n\u003cli\u003eDetects early reconnaissance and lateral movements\u003c\/li\u003e\n\u003cli\u003eBuilt-in, automated attack quarantine capabilities stop attacks before they spread\u003c\/li\u003e\n\u003cli\u003eAutomatically scales as risk level rises\u003c\/li\u003e\n\u003cli\u003eHelps mitigate ransomware by leading malware to encrypt fake files, triggering automatic blocking of the infected endpoint\u003c\/li\u003e\n\u003cli\u003eAutomatically deploys vulnerable decoys based on FortiGuard Labs latest outbreak alerts\u003c\/li\u003e\n\u003cli\u003eIntegrates with the Fortinet Security Fabric and third-party security controls\u003c\/li\u003e\n\u003cli\u003eGenerates high-fidelity, actionable alerts based on real-time interactions with adversaries\u003c\/li\u003e\n\u003cli\u003eCorrelates malicious activities using eight different forensic engines to help analysts investigate, gather forensic evidence, monitor, and automatically stop attacks in progress\u003c\/li\u003e\n\u003cli\u003eCloses visibility gaps with in-progress attack intel and detailed forensics\u003c\/li\u003e\n\u003cli\u003eProvides attack replays and attack visualizations\u003c\/li\u003e\n\u003cli\u003eLow-friction deployment and maintenance via automation\u003c\/li\u003e\n\u003cli\u003eOptimized OT, IoT, and IoMT decoys designed to expose and block threats to industrial systems, IoT, and IoMT devices\u003c\/li\u003e\n\u003cli\u003eAgentless and non-intrusive, with zero impact on mission-critical operations\u003c\/li\u003e\n\u003cli\u003eEase of installation (one-day operation) and use; does not require any network topology changes\u003c\/li\u003e\n\u003cli\u003eDetects threats to assets that cannot provide their own telemetry\u003c\/li\u003e\n\u003cli\u003eAvailable across every attack surface, including on-premise, cloud, and IT, OT, IoT, and IoMT environments\u003c\/li\u003e\n\u003cli\u003eOperates in both online and air-gapped modes\u003c\/li\u003e\n\u003c\/ul\u003e\u003cbr\u003eWhat's in the Box:\u003cbr\u003e \u003cul\u003e\n\u003cli\u003eFortinet FortiDeceptor 100G\u003c\/li\u003e\n\u003cli\u003eExternal power adapter\u003c\/li\u003e\n\u003c\/ul\u003e","brand":"FORTINET INC.","offers":[{"title":"Default Title","offer_id":41353838624843,"sku":"FDR-100G","price":33390.0,"currency_code":"CAD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1824\/0789\/files\/Fortinet-FortiDeceptor-100G-Security-appliance-1GbE-desktop-FDR-100G.jpg?v=1744760271","url":"https:\/\/www.tecisoft.ca\/products\/fortinet-fortideceptor-100g-security-appliance-1gbe-desktop-fdr-100g","provider":"TeciSoft","version":"1.0","type":"link"}