Skip to main content

Advanced Threat Control

For threats that elude even the heuristic engine, another layer of protection is present in the form of Advanced Threat Control (ATC).

Advanced Threat Control continuously monitors running processes and grades suspicious behaviors such as attempts to: disguise the type of process, execute code in another process's space (hijack process memory for privilege escalation), replicate, drop files, hide from process enumeration applications, etc. Each suspicious behavior raises the process rating. When a threshold is reached, an alarm is triggered.

Components

Advanced Threat Control uses the following components:

  • GravityZone Virtual Appliance

  • Security agent (Bitdefender Endpoint Security Tools installed on Windows & Mac endpoints)

  • Security Server Multi-Platform

  • Security Server for NSX-T

  • Security Server for NSX-V

Install and configure Advanced Threat Control

Test out Advanced Threat Control