FortiDeceptor

FortiDeceptor is the Concept of Honeypot & Threat Analytics & Threat Intelligent. Lure attackers to decoys that appear indistinguishable from real IT & OT assets & highly interactive. Centrally manage & automate deployments of decoy VMs(Windows, Linux, ICS/SCADA) and generations of lures (data, applications, Services) FortiDeceptor is designed to DECEIVE, EXPOSE and ELIMINATE external & internal attack kill chain & proactively block these threats before any significant damage occurs. Protect both IT & OT Devices, FortiDeceptor provides expansive decoy support to lure attacks away from IT & OT environments. Fortideceptor is Unintrusive & EasyIt is a Network based solution that creates a fake environment to stimulate the actual one. It is completely unintrusive -no requirement to take SCADA/ICS offline nor does it create any delay in operational duties.

• FortiDeceptor is one of the best Deception technology available across the globe, With the best licensing policy ( Maximum Decoys based on Deception best practice -Four Decoy per VLAN).
• Add-on-per VLAN(minimum quantity of two).
• Day-1 operation via AI-based network and asset discovery & automated deployment of decoys.
• Security Fabrics enables Fortideceptor integration with Fortinet & third-party security solutions to automate threat response.

Rapid7 InsightIDR, Smokescreen IllusionBlack and from Zscaler

FortiDeceptor protects our network from all aspects of malicious attacks. It's a proactive approach to Internet security rather than reacting as problems occur but putting up a giant roadblock to would-be attackers and stopping any major problems before they start. It's not overly complicated to use and does the job.

• Internet security is a gamble. It's hard to know the cost of a "would-be" attack. FortiDeceptor is basically an insurance policy and for that, it is a great investment.

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP), Microsoft Endpoint Manager (Microsoft Intune + SCCM), Bitdefender GravityZone and Symantec Endpoint Security

Palo Alto Networks Advanced URL Filtering, WatchGuard AuthPoint, Cisco Meraki MX

The main reason we outsourced FortiDeceptor was to complement the existing Enterprise Security solution. This was because we realized the Enterprise Security and SOAR solutions only concentrate on attacks on the main assets (servers); so that in the event of an attack, lateral systems like CPUs are exposed. With FortiDeceptor, we however eliminate attacks on the lateral assets before significant damages.

• It deploys decoys automatically, saving us the manpower.
• It has been the way to go for cybersecurity in our converged IT and OT environment.

Splunk SOAR (Security Orchestration, Automation and Response) (formerly Phantom), Splunk Enterprise Security (ES)