Stop the Most Sophisticated Cyber Attacks
With Layered Next-Gen Endpoint Protection

Bitdefender GravityZone Elite
Featuring Endpoint Security HD

Protect your enterprise against the full spectrum of sophisticated
cyber threats with speed and accuracy

To effectively protect you against highly sophisticated cyber attacks that evade conventional endpoint security tools, you need a layered defense approach with multi-stage
signature-less technologies including advanced machine learning, behavioral analysis, anti-exploit and integrated sandbox.

GravityZone Endpoint Security HD provides a layered next-gen architecture that delivers prevention, detection, remediation and visibility in a single modular platform.

READ WHITEPAPER

Bitdefender layered next generation endpoint protection platform

Uses adaptive-layered architecture that includes endpoint controls, prevention, detection, remediation and visibility.

Hardening & control

Application Control
Content Control
Content Control
URL filtering Web Security - Blocks access to malicious and exploit hosting sites
Anti-phishing
Anti-phishing
Blocks phishing or fraudulent sites
Firewall
Device Control
Full Disk Encryption
Full Disk Encryption
Central management of Windows BitLocker and Mac FileVault

Multi-stage detection

pre-execution

Signature & Cloud look-up
Local and Cloud Machine Learning
Machine Learning
Predictive detection of unknown malware Dynamic file analysis trained on billions of samples Threat intelligence from over 500 million endpoints globally
HyperDetect
HyperDetect
Blocks hacking tools, file less attacks, zero-day malware and more

on-execution

Sandbox Analyzer
Sandbox Analyzer
Detects zero-day & targeted attacks Real time attack prevention with auto-submit Analyzes once, enterprise-wide block
Anti-exploit
Anti-Exploit
Protects zero day and unpatched vulnerabilities
Process Inspector
Process Inspector
Behavior-based real time detection Operates on zero trust Continuously monitors all running processes

Action

Block Access
Quarantine
Disinfect / Removes
Process Termination
Process Termination
Automatically kills process based on behavior analysis
Roll Back
Roll Back
Rolls back malicious changes

Watch video

See how HyperDetect and Sandbox Analyzer work together to protect against elusive threats

HyperDetect™
Blocks Attacks at Pre-execution

GravityZone Endpoint Security HD comes with HyperDetect, a next-gen layer in pre-execution, uses specialized local machine models, behavior analysis techniques trained to spot
hacking tools, exploits and malware obfuscation techniques. It effectively blocks attacks that both traditional endpoint and so-called “next-gen AV” defenses miss.

  • Exploits
  • File-less attacks
  • Powershell and other script-based attacks
  • Ransomware
  • Phishing
  • Unknown malware

Sandbox Analyzer
Enhances Targeted Attack Detection

A powerful layer of protection against stealthy attacks, the endpoint integrated Sandbox Analyzer detonates payloads in a contained virtual environment, analyzes their behaviors, reports malicious intent and provides actionable insight.

  • Automatic and manual file submission
  • Cloud hosted infrastructure
  • Machine learning & behavior analysis
  • Threat forensic

Threat Context and Visibility

  • Identify and report on suspicious activities
  • Gain early visibility into valuable Indicator of compromises (IOC)
  • Sandbox Analyzer provides insight into malicious behaviors with detailed reports

Detect and Stop File-less Attacks with Process Inspector

Highly effective in detecting and stopping file-less attacks, Process Inspector (a part of ATC) continuously monitors all running processes and hunts for suspicious activities or anomalous process behaviors. Once it reaches a malicious verdict, GravityZone takes immediate remedial actions, including process termination an rolling back malicious changes.

Operational Efficiency

  • Single, integrated endpoint security agent
  • Eliminates agent fatigue
  • Modular-designed agent, customizable installation package
  • Small footprint, low end-user impact
  • Unified security management platform to protect physical, virtual, and cloud infrastructure

Automatic and Immediate Response

Bitdefender GravityZone Endpoint Security boasts the industry’s best malware-removal technology. Once a threat is detected, it instantly takes action to neutralize it:

  • Process termination
  • Quarantine
  • Removal of all remnants
  • Roll back malicious changes

No More False Triggers or
Missed Threats

Bitdefender GravityZone GravityZone Endpoint Security HD :

  • Process termination
  • Quarantine
  • Removal of all remnants
  • Roll back malicious changes

Endpoint Security HD is the only endpoint security platform that can expose suspicious files and activities it observes on the endpoint (regardless of where customers set the blocking level) as well as provide detailed endpoint optics and indication of early stage of attacks.

Add-ons

GravityZone Integrated Patch Management

Unpatched systems leave organizations susceptible to malware incidents, outbreaks, and data breaches. Keep your OS and Applications up to date across the entire Windows install base - workstations, physical servers and virtual servers with GravityZone Patch Management.

GravityZone Full Disk Encryption

GravityZone FDE protects data for the entire endpoint hard drive by leveraging the encryption mechanisms provided by Windows (BitLocker) and Mac (FileVault). It takes advantage of the native device encryption to ensure full compatibility and maximized performance. GZ FDE is integrated into the GravityZone Console and Agent, with no additional agent to deploy or key management server to install. The use of existing endpoint security infrastructure to manage Full Disk Encryption enables fully centralized deployment with minimal administrative effort.

Requirements


  • Supported Endpoint Operating Systems:

    • Windows 10, Windows 8, 8.1, Windows 7, Windows Vista (SP1), Windows XP (SP3)
    • Mac OS Sierra (10.12.x), OS X El Capitan (10.11.x), OS X Yosemite (10.10.5), OS X Mavericks (10.9.5), OS X Mountain Lion (10.8.5)
    • Linux: Red Hat Ent. 6.2, 6.1, 5.7, 5.6; CentOS 6.2, 6.1, 5.7, 5.6; Ubuntu 11.04, 10.04; SUSE Ent. Server 11; OpenSUSE 12, 11; Fedora 16, 15
    • Windows Embedded 8 Standard, Windows Embedded 8.1 Industry, Windows Embedded Standard 7, Windows Embedded POSReady 7, Windows Embedded Enterprise 7, Windows Embedded POSReady 2009, Windows Embedded Standard 2009, Windows XP Embedded with Service Pack 2, Windows XP Tablet PC Edition
    • Windows Server 2016, Windows Server 2016 Core, Windows Server 2012, Windows Server 2012 R2, Windows Small Business Server (SBS) 2011, Windows Small Business Server (SBS) 2008, Windows Server 2008 R2, Windows Server 2008, Windows Small Business Server (SBS) 2003, Windows Server 2003 R2, Windows Server 2003 with Service Pack 1, Windows Home Server

    Endpoint hardware requirements:

    • Minimum : 2.4 GHz single-core CPU
      Recommended: 1.86 GHz or faster Intel Xeon multi-core CPU
    • Memory:
      Minimum free RAM: 512 MB
      Recommended free RAM: 1 GB
      HDD space: 1.5 GB of free hard-disk space

    Supported mobile devices:

    • Apple iPhones and iPad tablets (iOS 5.1+)
    • Google Android smartphones and tablets (2.2+)
  • GravityZone Control Center (on-premise console)

    • GravityZone Control Center is delivered as a virtual appliance and is available in the following formats:
    • OVA (compatible with VMware vSphere, View)
    • XVA (compatible with Citrix XenServer, XenDesktop, VDI-in-a-Box)
    • VHD (compatible with Microsoft Hyper-V)
    • Support for other formats and virtualization platforms may be provided on request.

    Control Center Minimum Hardware Requirements

    • CPU: 4 vCPU with 2 GHz each
    • Minimum RAM memory: 6 GB recommended
    • 40 GB of free hard-disk space
    • Internet access for updates and communication with remote and mobile endpoints.

    Supported email servers:

    • Exchange 2013, 2010, 2007;
    • Exchange 2013, 2010, 2007;
    • Roles: Edge, Hub and Mailbox;
    • Protocols: SMTP, MAPI, Exchange ActiveSync;
  • GravityZone Endpoint Security HD

    • Workstation OS: Windows 10 RS2/RS1/TH2/TH1, Windows 8, 8.1, Windows 7 SP1
    • Windows tablet and embedded OS: Windows Embedded 8 Standard, Windows Embedded 8.1 Industry, Windows Embedded Standard 7, Windows Embedded POSReady 7, Windows Embedded Enterprise 7
    • Server operating systems: Windows Server 2016, Windows Server 2012, Windows Server 2012 R2, Windows Small Business Server
      (SBS) 2011, Windows Server 2008 R2, Windows Server 2016 Core
      LICENSING OPTIONS
      GravityZone Endpoint Security HD is included in the Bitdefender GravityZone Elite suite (Cloud-managed).
      GravityZone Elite suite also includes Security for Endpoint running on Windows, Mac and Linux
      Security for Exchange
      Security for Virtualized Environment (Datacenter security)

Compare Endpoint Protection

Conventional endpoint security solutions—originally designed with hardware-defined, premise-based
infrastructure in mind—are unsuitable for the software-defined datacenter as they are inefficient.

Security for Endpoint
  • Machine Learning AV
  • Anti-Exploit
  • Process Inspector
  • Web Security& Anti-Phishing
  • Ransomware protection
  • Web-content control
  • Device Control
  • Client Firewall
  • App-Control
  • Clean up
Endpoint Security HD
  • Machine Learning AV
  • Anti-Exploit
  • Hyper Detect
  • Endpoint Integrated Sandbox
  • Visibility of suspicious activities
  • Process Inspector
  • Web Security & Anti-Phishing
  • Ransomware protection
  • Web-content control
  • Device Control
  • Client Firewall
  • App-Control
  • Clean up

Proven Long-term Track Record

Bitdefender consistently demonstrates superior capabilities in independent tests. In 2016, 2015 and 2014, Bitdefender
had the highest overall score for protection, performance and usability in AV-Test Endpoint protection trials

Source:AV-Test, Business Windows Client Trials