Bitdefender
GravityZone Ultra
Security

The ultimate in advanced protection, detection and response,
designed to address the entire threat lifecycle

FEATURES & BENEFITS
TECHNOLOGIES & ARCHITECTURE
RESOURCES
SPECIFICATIONS & FAQS

Uncover and stop elusive threats with Endpoint Detection and Response (EDR) that works

 

Easy-to-Use, High-Fidelity EDR is integral to our Comprehensive Endpoint Protection Platform (EPP)!
GravityZone Ultra integrates layered next-gen endpoint protection and easy-to-use EDR platform to accurately protect enterprises against even the most elusive cyber threats. It offers prevention, automated detection, investigation and response tools so enterprise customers can protect their digital assets and respond to these threats

GravityZone excels where most products are too complex and resources intensive!
Relying on highly effective prevention, automated threats detection and response technologies, GravityZone Ultra sharply limits the number of incidents requiring manual analysis, reducing the operational effort required to run a EDR solution. Cloud-delivered and built from the ground up as an unified, single agent/single console solution, it’s also easy to deploy and integrate in the existing security architecture.

Protection and visibility

Keeping digital assets safe in an era of ever evolving cyber threats requires a new bread of endpoint security solutions.

Combining prevention with detection and response technologies, GravityZone Ultra extends endpoint protection with pre and post compromise visibility, root cause analysis, investigation, threat hunting & remediation tools.

It effectively detects and stops sophisticated threats like file-less attacks, hacking tools, exploits, ransomware, cryptojacking and other types of malware obfuscation techniques.

Automation and Ease of Use

Limited cybersecurity resources means not only management challenges but are also a critical vulnerability for enterprises.

GravityZone Ultra relies on automation technologies and easiness of use to help organizations cope with the cybersecurity skill shortage while making no compromise on the overall security posture.

Effective prevention, security automation and alert triage reduce the burden of incident investigation, helping security teams to stay focused on incidents that actually require further attention.

Operational simplicity

Running multiple agents on the endpoints not only increase the acquisition and operations costs but, due to limited compatibility, also may create security gaps.

Designed for fast deployment, fast integration and easy operations, GravityZone Ultra relies on a single console/single agent architecture, built from the ground up to integrate all security layers and to ensure cross-platform coverage: physical/virtual, Windows, Mac and Linux.

Features and benefits

Incident Investigation and Response

Fast alert triage and incident investigation, using attack timeline and sandbox output, enable incident response teams to react fast and stop ongoing attacks (one-click to respond).

Big Data Threat Intelligence

Largest security big-data platform collects real-time data from over 500 mil endpoints to anticipate the emerging threats and to deliver instant protection against both known and unknown attacks.

Modular Layered Defense

Signature-less technologies, including advanced local and cloud machine learning, behavior analysis technologies, integrated sandbox and device hardening work as a highly effective layered protection against sophisticated threats.

End-to-end Attack Forensincs

Pre and Post compromise attack visibility enable security analysts to perform root cause analysis both on blocked attacks and ongoing suspicious activities.

World's best prevention

World’s best prevention stack and on-execution behavior-based detection capabilities prevent and stop advanced threats from being executed on enterprise infrastructure. Once an active threat is detected, automatic response kicks-in for blocking further damage or lateral movements.

Integrated SecOps

Incorporates modules to help reducing the gap between IT and Security operations. It lowers the operational effort required to minimize the cyber risk by reducing the attacks surface: app control, device control, patch management.

Single Agent/Single Console

Built from the ground-up as a single agent/single console solution, incorporating all technologies required to effectively defend enterprise endpoints and stop all cyber threats. It eliminates the need to run multiple agents and significantly simplifies deployment and operations.

Cross platform Coverage and 3rd Party Integration API's

It covers all enterprise endpoints, running Windows, Linux or Mac, in physical, virtualized or cloud infrastructures, delivering consistent security across entire infrastructure. Supports integration with pre-existing security operations tools (SIEMS, e.g. Splunk) and datacenter specific technologies (all major hypervisors in the market).

EDR SO EASY, YOU CAN ACTUALLY USE IT

Expanding beyond traditional EPP functionalities, GravityZone Ultra provides security analysts and incident response teams with the tools they need to triage and investigate suspicious activities and adequately respond to advanced threats:

 

  • Real-time detection and automatic remediation
  • Fast incident triage, investigation and response
  • Suspicious activity detection
  • Suspicious activity validation and alert triage
  • One-click incident response
  • Pre and Post compromise forensics (Root Cause Analysis)
  • Current and historic data search for threat hunting
  • IOCs
  • MITRE tags
  • Processes, Files, Registry entries or other parameters

Bitdefender’s advanced endpoint technology is integrated into suites designed with you in mind.

 
GravityZone Suite Advanced Business Security

Fully Automated, no touch security for any enterprise

 Elite Security

For security-centric enterprises
looking to automate protection while
analyzing critical threats

 Ultra Security

The ultimate in advanced protection,
detection and response, designed to
address the entire threat lifecycle
Integrated Endpoint Detection and Response
Root Cause Analysis
(with 90 day historical support)
Remote Response Action
(remote shell and quarantine)
MITRE Technique Tagging
Suspicious Activity Alerting
Cloud-based Sandbox
Threat Analysis
HyperDetect User-Tunable
Machine Learning
On device machine learning based
on 80,000 malware features
Active Exploit Memory Protection
Malicious Process Behavior
Blocking
Management Console Cloud or On permise Cloud or On premise Cloud
 
LEARN MORE
LEARN MORE
LEARN MORE

Over 30 protection layers included in all suites: Advanced Threat Cleanup, Centralized Protection for Virtual Environments, Device Control, Web Threat Protection, Firewall, Exchange Malware Protection, Application Whitelisting (on premise only), Application Blacklisting, Mobile Device Management (on premise only).

Additional options:

  • Full disc encryption
  • Patch management
  • Managed Endpoint Detection and Response
  • Hypervisor security

Bitdefender layered next generation endpoint protection platform

Uses adaptive-layered architecture that includes endpoint controls, prevention, detection, remediation and visibility.

HARDENING & CONTROL

Patch Management

Application Control

Full-Disk Encryption

Device Control

Web-Threat Protection

Firewall

PRE-EXECUTION DETECTION

Signature & Cloud Lookup

Local & Cloud ML

HyperDetect Tunable ML

Sandbox Analyzer

ON & POST-EXECUTION DETECTION

Anti-Exploit

Process Inspector

Event Recorder

Threat Analytics

AUTOMATIC ACTION

Access Blocking

Quarantine

Disinfection & Removal

Process Termination

Rollback

INVESTIGATION & RESPONSE

IoC Lookup

Blocklist

Network Isolation

Detonation

Visualization

REPORTING & ALERTING

Reports

Notifications

SIEM Integration

API Support

Resources

Stop Fileless Attacks at Pre-execution

 

Threat actors are shifting to fileless attacks. Experts would tell you that these attacks cannot be prevented by endpoint security solutions. At Bitdefender, we challenge ourselve…

READ WHITEPAPER

Protect your enterprise against the full spectrum of sophisticated cyber threats

Enterprise Strategy Group (ESG) believes that history is in the process of repeating itself, as advanced prevention, detection, and response controls are being aggregated to create a new generation of EPP suites. Suites that are more efficient and effective in crushing threats, known and unknown.

SEE FULL REPORT
VIEW ALL

Testimonial

“The Government Employees Health Association is one of the largest providers of medical and dental insurance and insures hundreds of thousands of federal government employees in the United States. Bitdefender GravityZone Elite protects the insurance provider’s 1,900 virtual and physical servers, workstations, and virtual desktops across two data centers.”

Additional Protection Layers and Services

1

GRAVITYZONE INTEGRATED PATCH MANAGEMENT

Unpatched systems leave organizations susceptible to malware incidents, outbreaks, and data breaches. Keep your OS and Applications up to date across the entire Windows install base – workstations, physical servers and virtual servers with GravityZone Patch Management.

Download Datasheet  >

2

GRAVITYZONE FULL DISK ENCRYPTION

GravityZone FDE protects data for the entire endpoint hard drive by leveraging the encryption mechanisms provided by Windows (BitLocker) and Mac (FileVault). It takes advantage of the native device encryption to ensure full compatibility and maximized performance. GZ FDE is integrated into the GravityZone Console and Agent, with no additional agent to deploy or key management server to install. The use of existing endpoint security infrastructure to manage Full Disk Encryption enables fully centralized deployment with minimal administrative effort.
Read more  >

3

PROFESSIONAL SERVICES

Our experts will help you install and configure your Bitdefender solution for the optimal protection and performance your business applications need. These services offer customers the benefit of expert guidance throughout the implementation process, ensuring a smooth and trouble-free start.
Skilled Bitdefender engineers will follow best practices and keep your business needs in mind while helping you install the security solution in your environment.

Specs & FAQ’s

SPECIFICATIONS / SYSTEM REQUIREMENTS

GravityZone Ultra is available with the cloud console. It protects desktops, laptops, servers (physical and virtual) and mailboxes. Servers should account for less than 35% of all units.

SUPPORTED OPERATING SYSTEMS:

Windows Desktop
Windows 10 October 2018 Update (version 1809), Windows 10 April 2018 Update (version 1803), Windows 10 Fall Creators Update (version 1709), Windows 10 Creators Update (version 1703), Windows 10 Anniversary Update (version 1607), Windows 10 November Update (version 1511), Windows 10 (RTM, version 1507), Windows 8.1, Windows 8, Windows 7

Windows Tablet and Embedded

Windows Embedded 8.1 Industry, Windows Embedded 8 Standard, Windows Embedded Standard 7, Windows Embedded Compact 7, Windows Embedded POSReady 7, Windows Embedded Enterprise 7

Windows Server

Windows Server 2019, Windows Server 2016, Windows Server 2016 Core, Windows Server 2012 R2, Windows Server 2012, Windows Small Business Server (SBS) 2011, Windows Server 2008 R2

macOS

macOS Mojave (10.14), macOS High Sierra (10.13.x), macOS Sierra (10.12.x), OS X El Capitan (10.11.x), OS X Yosemite (10.10.5), OS X Mavericks (10.9.5)

Linux

Ubuntu 14.04 LTS or higher, Red Hat Enterprise Linux / CentOS 6.0 or higher, SUSE Linux Enterprise Server 11 SP3 or higher, OpenSUSE Leap 42.x, Fedora 25 or higher, Debian 8.0 or higher, Oracle Linux 6.3 or higher, Amazon Linux AMI 2016.09 or higher
Note: Specific kernel versions are supported. For details, please refer to the product documentation.

HD GRAVITYZONE ENDPOINT SECURITY HD
  • Exchange Server 2016, 2013, 2010
  • Physical and virtual servers
  • Roles: Edge, Hub and Mailbox
  • Protocols: SMTP, MAPI, Exchange ActiveSync
ENDPOINT SECURITY XDR

(that includes HyperDetect and Sandbox Analyzer modules) is available on:
Windows Desktop
Windows 10 October 2018 Update (version 1809), Windows 10 April 2018 Update (version 1803), Windows 10 Fall Creators Update (version 1709), Windows 10 Creators Update (version 1703), Windows 10 Anniversary Update (version 1607), Windows 10 November Update (version 1511), Windows 10 (RTM, version 1507), Windows 8.1, Windows 8, Windows 7

Windows Tablet and Embedded

Windows Embedded 8.1 Industry, Windows Embedded 8 Standard, Windows Embedded Standard 7, Windows Embedded Compact 7, Windows Embedded POSReady 7, Windows Embedded Enterprise 7

Windows Server

Windows Server 2019, Windows Server 2016, Windows Server 2016 Core, Windows Server 2012 R2, Windows Server 2012, Windows Small Business Server (SBS) 2011, Windows Server 2008 R2

Linux

Ubuntu 14.04 LTS or higher, Red Hat Enterprise Linux / CentOS 6.0 or higher, SUSE Linux Enterprise Server 11 SP4 or higher, OpenSUSE Leap 42.x, Fedora 25 or higher, Debian 8.0 or higher, Oracle Linux 6.3 or higher, Amazon Linux AMI 2016.09 or higher

Note 1: Specific kernel versions are supported. For details, please refer to the product documentation.
Note 2: Sandbox Analyzer module is not available on Linux endpoints.

ENDPOINT HARDWARE REQUIREMENTS

Minimum : 2.4 GHz single-core CPU
Recommended: 1.86 GHz or faster Intel Xeon multi-core CPU

Memory:
Minimum free RAM: 512 MB
Recommended free RAM: 1 GB
HDD space: 1.5 GB of free hard-disk space

FAQ’s

WHAT DO I NEED TO START A TRIAL OF THIS SOLUTION?

To ask for a demo of GravityZone Ultra, please fill in this Inquire Form

HOW CAN I GET A LICENSE FOR GRAVITYZONE ULTRA?

After the demo period, contact us and ask for an Ultra license key.

CAN I CHOOSE TO PROTECT ONLY A PART OF THE MAILBOXES AND LEAVE THE REST UNPROTECTED?

Security for Exchange does not support protecting only a part of the mailboxes and excluding specific mailboxes from licensing. Security for Exchange is designed to protect the Exchange organization to which the protected Exchange Server belongs.
This means it protects all active mailboxes, including user/room/equipment/shared mailboxes.
For security reasons, it is recommended to protect all mailboxes. Otherwise, malware can enter your infrastructure using the unprotected mailboxes and then spread in the entire organization.

HOW CAN I GET HELP AROUND INSTALLATION?

Your Bitdefender Partner together with Bitdefender experts can help you install and configure your Bitdefender solution for the optimal protection and performance your business applications need. The SMB Start service offers customers the benefit of expert guidance throughout the beginning of the implementation, ensuring a smooth and trouble-free start.

ARE THERE ADDITIONAL FEATURES THAT I CAN ADD TO GRAVITYZONE ULTRA?

To any Bitdefender endpoint solution, you can add more protection layers to increase the protection areas. You can add Patch Management to keep your Windows OS and Applications up to date or Full Disk Encryption, to protect data residing on your endpoints or HVI, to uncover memory violations that endpoint security tools and to stop the advanced attacks at the kernel level.

If you want to enjoy Bitdefender GravityZone Ultra protection take a quick start here:

FREE TRIAL