Bitdefender Network Traffic Security Analytics

Real-time breach detection. Automated triage. Complete visibility

Cloud threat intelligence, Machine Learning and behavior analytics applied to network traffic to detect advanced attacks early and enable effective threat hunting

Bitdefender Network Traffic Security Analytics detects advanced attacks in real-time and automates alert triage to provide context and facilitate incident response. NTSA uses a combination of machine learning and behavior analytics with insights from Bitdefender cloud threat intelligence consisting of 500 million sensors globally to detect threats for all entities, managed or unmanaged, for encrypted or un-encrypted network traffic.

NTSA is a plug-and-play, out-of-band solution, with flexible deployment options, that focuses on traffic meta-data and enables analysis over longer periods of time to accurately detect the most sophisticated malware and Advanced Persistent Threats (APTs) with high fidelity. Combined with Bitdefender GravityZone, organizations can quickly remediate security incidents. read moreread less

Integrates cloud threat intelligence, machine learning and behavior analytics to detect all advanced threats

Realtime threat detection
for any network device

Provides complete threat related network activity for any device on the network.

Protects your privacy and personal data at the network level

Save time with Automated
security incident triage

Improves threat hunting efficiency by automatically correlating events to generate high-fidelity alerts.

Hunt for cyber threats
with detailed forensics

Gives detailed security incident explanation with suggested course of action for improved incident investigation and response.

Features and benefits

Advanced Threat Detection

Live analysis of all network traffic, including encrypted
High fidelity alerts using AI/ML & insights from 500 Million sensors

Automated Triage

Detailed attacker Tactics Techniques & Procedures (TTP)
Alerts and IR investigations resolved with automation

IOT & BYOD Protection

Learns & tracks all entities on-premise, in cloud or on SaaS
Non-intrusive. No complex log or agent integrations

Compliance

Compliant with PCI, GLBA, NIST, GDPR and others
Use of meta-data eliminates privacy concerns

Want to learn more?
Get the details on all features

DOWNLOAD DATASHEET

Intellitriage

Security Operations Centers should not suffer of alerts fatigue!

IntelliTriage, the newest NTSA component, automates the process of security incidents triage to dramatically improve incident investigation time and reduce organizational risk with high-fidelity alerts.

IntelliTriage also provides recommended remediation guidance on steps to take based on the security incident.

It enables complex scenario-based learning to detect advanced attacks with high accuracy and corelates thousands of security alerts in order to create a clear picture of each incident. IntelliTriage provides detailed explanations for the incident severity score. Recommended remediation actions are also provided to facilitate faster incident response.

How it works

“Thanks to the RedSocks MTD technology and logging functionality we were able to see exactly who had a malware infection with which device at which location. It allows us to turn suspicion into certainty.”

Theo Kip, IT Risk and Compliance Officer

“The RedSocks MTD gives the IT department of Yamaha Motor Europe full visibility and makes us aware of certain, less desirable things happening in the network, for example: it alerted us when an external consultant tried to access the internet using a TOR browser. That does not yield an immediate danger, but it is strange behavior considering the fact that often botnets are controlled via the TOR network. ”

Sjoerd Nijmeijer, Department Manager IT Infrastructure Information Systems

“With the RedSocks MTD we stay one step ahead of the problem, rather than having to take action afterwards once the harm has already been done.”

Johan Sluijters, Network Administrator

“In identifying the security needs we took into consideration the possible threats from malicious software that might find its way onto the network. For this reason, we were looking specifically for new ways of detecting these threats. So for us the best solution was a security solution that was able to identify network traffic moving from the inside to the outside.”

Peter de Boer, Head of ICT Management

Bitdefender Network Traffic Security Analytics Datasheet

Download Datasheet

Specs

virtual NTSA

VMware software:
Minimum : VMware ESXi 5.1 &higher
Recommended : VMware ESXi 5.1 &higher

VMware software:
Minimum : 140 GB
Recommended : 140 GB

CPU Cores:
Minimum : 4
Recommended : 8

Memory:
Minimum : 8
Recommended : 8

vProbe

VMware software:
Minimum : VMware ESXi 4.1 &higher
Recommended : VMware ESXi 4.1 &higher

VMware software:
Minimum : 15 GB
Recommended : 15 GB

CPU Cores:
Minimum : 2
Recommended : 4

Memory:
Minimum : 4
Recommended : 8

If you want to enjoy
Network Traffic Security Analytics,
take a quick start here:

REQUEST DEMO

We’re here for you

Whether by phone, web, chat or e-mail, our dedicated support team is
here to assist you with installation, deployment and any other
questions you might have.

Get support

The best
digital protection
you can trust and rely on.

Layered Next-Generation Endpoint
Security now with EDR

GravityZone Ultra Suite Featuring GravityZone XDR

Bitdefender Expands Opportunities for MSP Partners by Unveiling New Partner Program

Bitdefender, Europol, Romanian and French Police, FBI Team up for Fourth GandCrab Decryptor

Bitdefender to Showcase Only Cloud Workload-Protection Solution Integrated with Nutanix Prism and Nutanix Files