Skip to main content

GravityZone Business Security Premium

GravityZone Business Security Premium combines an effective endpoint protection platform with incident analysis capabilities to help you defend endpoint infrastructure.

The GravityZone Business Security Premium product trial grants you access to the following features:

  • HyperDetect - contains machine learning models and stealth attack detection technology against threats such as: zero-day attacks, advanced persistent threats (APT), obfuscated malware, fileless attacks (misuse of PowerShell, Windows Management Instrumentation etc.), credential stealing, targeted attacks, custom malware, script-based attacks, exploits, hacking tools, suspicious network traffic, potentially unwanted applications (PUA), ransomware.

  • Cloud Sandbox Analyzer - provides a powerful layer of protection against advanced threats by performing automatic, in-depth analysis of suspicious files which are not signed by Bitdefender antimalware engines yet. The sandbox employs an extensive set of Bitdefender technologies to execute payloads in a contained virtual environment hosted by Bitdefender, analyze their behavior and report any subtle system changes that is indicative of malicious intent.

  • Fileless Attack Protection - is designed to detect and block fileless malware at pre-execution, that works by scanning the content at a deeper level by employing the AMSI integration.

  • Incidents - offers you a centralized view of security events and provides context and detailed information, including the full recorded timeline for blocked attacks.

  • Endpoint tags - helps you easily identify and take actions on managed endpoints, such as assigning policies based on specific rules or filtering items in the Network page.

Start the trial

To start the trial, follow the steps below:

  1. Log in to GravityZone with your administrator account.

  2. Click the product_trials_icon_262792_en.png button on the upper right side of the console to access the In Product Trials page.

  3. Select Learn more under the GravityZone Business Security Premium section.

  4. Select Start free trial.

Your company's licensing status will be updated to match your new product. You will be redirected the home page where you will see the new sections in GravityZone available to you.

Note

To revert to your previous license key, you can use the Stop Trial button. Learn more.

Configure and install the new features

Important

We recommend trying out the new features on a limited set of endpoints. This is most easily done by creating a new policy and applying it to the endpoints selected for testing.

To start using these new features, follow the steps below:

Preparing and deploying policies
  1. Go to the Policies page.

  2. You can either:

    • Create a new policy.

    • Edit one of your existing policies.

  3. Under Antimalware > Hyperdetect, enable and configure the module.

  4. Under Sandbox Analyzer, configure the module.Configuration

  5. Under Antimalware > On-Execute, enable and configure the Fileless Attack Protection module.

  6. Save your policy.

  7. If you created a new policy, apply it to the endpoints you want to test it on.

    If you edited an existing policy, the changes will take place on all endpoints it was applied to.

This will allow you to enable the newly available features on all selected endpoints.

Test out the new features

Submitting a file to Sandbox Analyzer

You can manually submit a specific file or URL to be scanned by the Sandbox analyzer engines by following these steps.

Note

You can download several samples to test out using this link.

You can check the results of the scan on the bottom of the Sandbox Analyzer page. Learn more

Viewing and interpreting detections

You can view the detected threats and more information about them in one of these two sections:

  • Threats Xplorer - this feature is specially designed to offer you highly increased visibility over the detected threats in your network. The feature centralizes detection events from multiple GravityZone technologies and classifies them by category, threat type, remediation actions, and many others. Learn more

  • Incidents - this page helps you filter, investigate and take actions on all security events detected by Incidents Sensor over a specific time interval. Learn more

Using endpoint tags

Tags are pieces of information that help you easily identify and take actions on managed endpoints, such as assigning policies based on specific rules or filtering items in the Network page. Endpoint tags do not apply to unmanaged endpoints and to Security Server instances. The assigned tags are displayed on the General tab of the endpoint details window. Learn more

Stop the trial

To stop the trial, follow the steps below:

  1. Log in to GravityZone with your administrator account.

  2. Click the product_trials_icon_262792_en.png button on the upper right side of the console to access the In Product Trials page.

  3. Select Learn more under the GravityZone Business Security Premium section.

  4. Select Stop trial.

Your company's licensing will revert to the previous state and all additional features will be disabled.