Bitdefender
Gravityzone Elite

The ultimate in advanced protection, detection and response,
designed to address the entire threat lifecycle

Bitdefender GravityZone Elite

 

Protect your enterprise against the full spectrum of sophisticated cyber threats with speed and accuracy.
GravityZone Elite provides a layered next-gen architecture that delivers prevention, detection, remediation and visibility in a single modular platform.

To effectively protect yourself from highly sophisticated cyber attacks that evade conventional endpoint security tools, you need a layered defense approach with multi-stage signature-less technologies, including advanced machine learning, behavioral analysis, anti-exploit and integrated sandbox.

Protection Against the Most Sophisticated Threats

  • Detects threats that evade endpoint security
  • Accurate prevent at pre-execution
  • Low level of false positive
  • Zeroes-in on advanced hacking tools, exploits, ransomware, gray-ware and PUPs

Intelligent Response

  • Immediate and automatic actions
  • Prevent damages caused by advanced attacks
  • Automatic sandbox submission
  • Terminate malicious processes
  • Roll back malicious changes

Improved Context and Insight

  • Provide better context on advanced threats
  • Connect threats with threat actions
  • Enhanced endpoint optics for future analysis and further actions
  • Expose suspicious threats (HD reports)

Features and benefits

Machine Learning Predicts and Blocks Advanced Attacks

Largest security big-data platform collects real-time data from over 500 mil endpoints to anticipate the emerging threats and to deliver instant protection against both known and unknown attacks.

HyperDetect™ Blocks Attacks at Pre-execution

Bitdefender HyperDetect contains machine learning models and stealth attack detection technology. It forms an additional layer of security, specifically designed to detect advanced attacks and suspicious activities in the pre-execution stage.

Sandbox Analyzer Enhances Targeted Attack Detection

Bitdefender Sandbox Analyzer provides pre-execution detection of advanced attacks by automatically sending files that require further analysis to cloud sandbox and taking remediation action based on the verdict.

Process Inspector Detects and Stops Fileless Attacks

Bitdefender Process Inspector is a behavior anomaly detection technology that provides protection against never-before-seen threats in the on-execution stage.

Endpoint Control and Hardening

Many features work together to reduce the attack surface: Patch Management, Full Disk Encryption, Web Threat Protection, Firewall, Application & Device Control.

Advanced Anti-exploit

The Bitdefender Memory Protection layer protects against known and unknown exploits targeting browser and application vulnerabilities in on-execution stage.

Benefits

Detect and Prevent the Full Range of Sophisticated Threats and Unknown Malware

Elite defeats advanced threats and unknown malware that evade traditional endpoint protection solutions, including ransomware. Advanced attacks such as PowerShell, script-based, fileless attacks and sophisticated malware can be detected and blocked before execution.

Detect and Stop Fileless Malware

Fileless malware attacks execute malicious code directly in memory. Since no file is present on the disk, AV solutions designed for file analysis are blind to this type of attack. Bitdefender leverages Advanced Anti-Exploit, HyperDetect™ and Process Inspector to detect, block and interrupt fileless attacks.

Stop Macro and Script-Based Attacks

In this case, attackers are trusted MS Office Macros that use Windows administration tools like PowerShell to run scripts and download malicious code to execute attacks. Since these are “trusted” Windows tools, most endpoint security products, including the pure next-gen AV providers, don’t scrutinize scripts, like Powershell, WMI, Javascript interpretors etc. Bitdefender adds Command-Line Analyzer techniques to intercept and securitize scripts, alerting admins and blocking the script from running if it carries out malicious commands.

Automate threat remediation, containment and response

Once a threat is detected, Elite instantly neutralizes it through actions including process termination, quarantine, removal and roll-back of malicious changes. It shares threat information in real time with GPN, Bitdefender’s cloud-based threat intelligence service, preventing similar attacks worldwide. 

 

Improved Threat Context and Visibility

GravityZone’s Elite unique capability to identify and report suspicious activities gives admins early warning of malicious behavior such as dubious operating system requests, evasive actions and connections to command and control centers.

 

Boost operational efficiency

Bitdefender’s single, integrated endpoint security agent eliminates agent fatigue. The modular design offers maximum flexibility and lets administrators set security policies. GravityZone automatically customizes the installation package and minimizes the agent footprint. Architected from the ground up post-virtualization and post-cloud security architectures, GravityZone provides a unified security management platform to protect physical, virtualized and cloud environments.

 

HyperDetect™ Blocks Attacks at Pre‑execution

GravityZone Elite comes with HyperDetect, a next-gen layer in pre-execution, that uses specialized local machine models, behavior analysis techniques trained to spot hacking tools, exploits and malware obfuscation techniques. It effectively blocks attacks that both traditional endpoint and so-called “next-gen AV” defenses miss.

 

  • Exploits
  • Powershell and other script based attacks
  • Phishing
  • File-less attacks
  • Ransomware
  • Unknown malware

SEE HOW HYPERDETECT AND SANDBOX ANALYZER WORK TOGETHER TO PROTECT AGAINST ELUSIVE THREATS

Bitdefender layered next generation endpoint protection platform

Uses adaptive-layered architecture that includes endpoint controls, prevention, detection, remediation and visibility.

HARDENING & CONTROL

Patch Management

Application Control

Full-Disk Encryption

Device Control

Web-Threat Protection

Firewall

PRE-EXECUTION DETECTION

Signature & Cloud Lookup

Local & Cloud ML

HyperDetect Tunable ML

Sandbox Analyzer

ON & POST-EXECUTION DETECTION

Anti-Exploit

Process Inspector

Event Recorder

Threat Analytics

AUTOMATIC ACTION

Access Blocking

Quarantine

Disinfection & Removal

Process Termination

Rollback

INVESTIGATION & RESPONSE

IoC Lookup

Blocklist

Network Isolation

Detonation

Visualization

REPORTING & ALERTING

Reports

Notifications

SIEM Integration

API Support

Bitdefender’s advanced endpoint technology is integrated into suites designed with you in mind

 
GravityZone Suite Advanced Business Security

Fully Automated, no touch security for any enterprise

Elite Security

For security-centric enterprises
looking to automate protection while
analyzing critical threats

Ultra Security

The ultimate in advanced protection,
detection and response, designed to
address the entire threat lifecycle

Integrated Endpoint Detection and Response
Root Cause Analysis
(with 90 day historical support)
Remote Response Action
(remote shell and quarantine)
MITRE Technique Tagging
Suspicious Activity Alerting
Cloud-based Sandbox
Threat Analysis
HyperDetect User-Tunable
Machine Learning
On device machine learning based
on 80,000 malware features
Active Exploit Memory Protection
Malicious Process Behavior
Blocking
Management Console Cloud or On permise Cloud or On premise Cloud
 

Over 30 protection layers included in all suites: Advanced Threat Cleanup, Centralized Protection for Virtual Environments, Device Control, Web Threat Protection, Firewall, Exchange Malware Protection, Application Whitelisting (on premise only), Application Blacklisting, Mobile Device Management (on premise only).

Additional options:

  • Full disc encryption
  • Patch management
  • Managed Endpoint Detection and Response
  • Hypervisor security

Resources

WHITEPAPER ESG “AN ADAPTIVE AND LAYERED APPROACH TO ENDPOINT SECURITY”

 

Requirements for the Next Generation of Endpoint Protection Platforms

FILELESS ATTACKS SOLUTION BRIEF

Threat actors are shifting to fileless attacks. Experts would tell you that these attacks cannot be prevented by endpoint security solutions. At Bitdefender, we challenge ourselves to protect our customers against the full spectrum of threats – file-based and fileless malware.

Testimonial

“GravityZone Enterprise Security provides comprehensive protection for KDFA’s physical laptops, Microsoft Exchange Server, file and application servers virtualized on Citrix XenServer, Citrix virtual desktop infrastructure (VDI) and mobile devices.”

Additional Protection Layers and Services

1

PATCH MANAGEMENT

Unpatched systems leave organizations susceptible to malware incidents, outbreaks, and data breaches. Keep your OS and Applications up to date across the entire Windows install base – workstations, physical servers and virtual servers with GravityZone Patch Management.

Download Datasheet  >

2

GFULL DISK ENCRYPTION

GravityZone FDE protects data for the entire endpoint hard drive by leveraging the encryption mechanisms provided by Windows (BitLocker) and Mac (FileVault). It takes advantage of the native device encryption to ensure full compatibility and maximized performance. GZ FDE is integrated into the GravityZone Console and Agent, with no additional agent to deploy or key management server to install. The use of existing endpoint security infrastructure to manage Full Disk Encryption enables fully centralized deployment with minimal administrative effort.
Read more  >

3

PROFESSIONAL SERVICES

Our experts will help you install and configure your Bitdefender solution for the optimal protection and performance your business applications need. These services offer customers the benefit of expert guidance throughout the implementation process, ensuring a smooth and trouble-free start.
Skilled Bitdefender engineers will follow best practices and keep your business needs in mind while helping you install the security solution in your environment.

Specs & FAQ’s

SPECIFICATIONS / SYSTEM REQUIREMENTS

GravityZone Ultra is available with the cloud console. It protects desktops, laptops, servers (physical and virtual) and mailboxes. Servers should account for less than 35% of all units.

SUPPORTED OPERATING SYSTEMS:

Windows Desktop 

Windows 10 October 2018 Update (version 1809), Windows 10 April 2018 Update (Redstone 4), Windows 10 Fall Creators Update (Redstone 3), Windows 10 Creators Update (Redstone 2), Windows 10 Anniversary Update (Redstone 1), Windows 10 November Update (Threshold 2), Windows 10, Windows 8.1, Windows 8, Windows 7 

macOS 

macOS Mojave (10.14), macOS High Sierra (10.13.x), macOS Sierra (10.12.x), OS X El Capitan (10.11.x), OS X Yosemite (10.10.5), OS X Mavericks (10.9.5) 

Windows Tablet and Embedded 

Windows Embedded 8.1 Industry, Windows Embedded 8 Standard, Windows Embedded Standard 7, Windows Embedded Compact 7, Windows Embedded POSReady 7, Windows Embedded Enterprise 7 

Windows Server 

Windows Server 2019, Windows Server 2016, Windows Server 2016 Core, Windows Server 2012 R2, Windows Server 2012, Windows Small Business Server (SBS) 2011, Windows Server 2008 R2 

Linux 

Ubuntu 14.04 LTS or higher, Red Hat Enterprise Linux / CentOS 6.0 or higher, SUSE Linux Enterprise Server 11 SP4 or higher, OpenSUSE Leap 42.x, Fedora 25 or higher, Debian 8.0 or higher, Oracle Linux 6.3 or higher, Amazon Linux AMI 2016.09 or higher 
Note 1: Specific kernel versions are supported. For details, please refer to the product documentation. 
Note 2: Endpoint Security HD for Linux includes the HyperDetect module, but not the Sandbox Analyzer integration.

Mail Servers 

 

  • Exchange Server 2016, 2013, 2010
  • Physical and virtual servers
  • Roles: Edge, Hub and Mailbox
  • Protocols: SMTP, MAPI, Exchange ActiveSync

 

Mobile platforms (on-premise console only) 

Android smartphones and tablets, Apple iPhones and iPad tablets 

HYPERDETECT MODULE IS AVAILABLE FOR: 

Windows Desktop 

Windows 10 October 2018 Update (version 1809), Windows 10 April 2018 Update (Redstone 4), Windows 10 Fall Creators Update (Redstone 3), Windows 10 Creators Update (Redstone 2), Windows 10 Anniversary Update (Redstone 1), Windows 10 November Update (Threshold 2), Windows 10, Windows 8.1, Windows 8, Windows 7 

Linux 

Ubuntu 14.04 LTS or higher, Red Hat Enterprise Linux / CentOS 6.0 or higher, SUSE Linux Enterprise Server 11 SP4 or higher, OpenSUSE Leap 42.x, Fedora 25 or higher, Debian 8.0 or higher, Oracle Linux 6.3 or higher, Amazon Linux AMI 2016.09 or higher 

Note 1: Specific kernel versions are supported. For details, please refer to the product documentation. 
Note 2: Endpoint Security HD for Linux includes the HyperDetect module, but not the Sandbox Analyzer integration.

CONTROL CENTER MINIMUM HARDWARE REQUIREMENTS

T CPU: 4 vCPU with 2 GHz each 
Minimum RAM memory: 6 GB recommended 
40 GB of free hard-disk space 
Internet access for updates and communication with remote and mobile endpoints.

ENDPOINT HARDWARE REQUIREMENTS

Minimum : 2.4 GHz single-core CPU 
Recommended: 1.86 GHz or faster Intel Xeon multi-core CPU 
Memory: 
Minimum free RAM: 512 MB 
Recommended free RAM: 1 GB 
HDD space: 1.5 GB of free hard-disk space

GRAVITYZONE CONTROL CENTER (ON-PREMISE CONSOLE)

GravityZone Control Center is delivered as a virtual appliance and is available in the following formats:
OVA (compatible with VMware vSphere, View)
XVA (compatible with Citrix XenServer, XenDesktop, VDI-in-a-Box)
VHD (compatible with Microsoft Hyper-V)
Support for other formats and virtualization platforms may be provided on request.

FAQ’s

HOW CAN I GET A LICENSE FOR GRAVITYZONE ELITE?

To ask for a demo of GravityZone Elite, please fill in this Inquire Form

HOW CAN I GET HELP AROUND INSTALLATION?

Your Bitdefender Partners will put you in contact with our experts who will help you install and configure your Bitdefender solution for the optimal protection and performance your business applications need.

CAN I CHOOSE TO PROTECT ONLY A PART OF THE MAILBOXES AND LEAVE THE REST UNPROTECTED?

Security for Exchange does not support protecting only a part of the mailboxes and excluding specific mailboxes from licensing. Security for Exchange is designed to protect the Exchange organization to which the protected Exchange Server belongs.
This means it protects all active mailboxes, including user/room/equipment/shared mailboxes.
For security reasons, it is recommended to protect all mailboxes. Otherwise, malware can enter your infrastructure using the unprotected mailboxes and then spread in the entire organization.

ARE THERE ADDITIONAL FEATURES THAT I CAN ADD TO ELITE?

To any Bitdefender endpoint solution, you can add additional protection layers, to increase the protection areas. You can add Patch Management to keep your Windows OS and Applications up to date, or Full Disk Encryption to protect data residing on your endpoints. (-> Patch Management, Full Disk Encryption, HVI)

If you want to enjoy GravityZone Elite protection, take a quick start here: