Bitdefender GravityZone

Version Bitdefender GravityZone Elite Security or Bitdefender GravityZone Business Security Cloud.

Bitdefender GravityZone is the new Bitdefender enterprise security solution for Medium to Very Large Organizations. GravityZone leverages Bitdefender’s acclaimed antimalware technologies and provides a centralized security management platform for physical, virtualized and mobile endpoints.

Netsurion Open XDR helps to monitor events from Bitdefender GravityZone. Its knowledge objects and flex reports will help you to analyze firewall, device control, threat and phishing related details.

Netsurion Data Source Integration for Bitdefender GravityZone allows you to monitor the following components:

  • Security – Threat detected, applications and websites blocked details, data protection, and device control activity.
  • Operation –  On-Demand scan and its results, security event audit details.

Once Bitdefender GravityZone is configured to deliver events to Netsurion Open XDR Manager; Knowledge objects and reports can be configured into Netsurion Open XDR.

The following are the key Data Source Integration available in Netsurion Open XDR.

Reports

TypeNameDescription
SecurityBitdefender GravityZone – Application FirewallThis category provides information related to the application which was blocked from connecting to the network based on the rule configured.
SecurityBitdefender GravityZone – Antiphishing ActivityThis category provides information related to the Phishing activity that has been detected and blocked at the endpoints.
SecurityBitdefender GravityZone – Blocked ApplicationsThis category provides information related to the blocked application and its attributes.
SecurityBitdefender GravityZone – Blocked Website DetailsThis category provides information related to the blocked websites, source endpoints and the reason for blocked details.
SecurityBitdefender GravityZone – Data Protection EmailThis category provides information related to the blocked email sender or recipient by data protection module and rule details which was applied.
SecurityBitdefender GravityZone – Data Protection WebThis category provides information related to the blocked websites by data protection module and rule details which was applied.
SecurityBitdefender GravityZone – Device Control ActivityThis category provides information related to the devices which are allowed or blocked at the endpoints and its attributes.
SecurityBitdefender GravityZone – Firewall ActivityThis category provides information related to the IP address or port which were blocked by the Bitdefender based on the rule configured.
SecurityBitdefender GravityZone – Malware ActivityThis category provides information related to the threat which was detected at the endpoints and its attributes.
SecurityBitdefender GravityZone – Malware StatusThis category provides information related to the status of the threat that was detected.
OperationsBitdefender GravityZone – On-Demand Scan DetailsThis category provides information related to the on-demand scanning details and results.
OperationsBitdefender GravityZone – Security AuditThis category provides information related to the security events from different modules which were occurred.

Documentation

The configuration details are consistent with Netsurion Open XDR 9.x and later, and Bitdefender GravityZone Elite Security or Bitdefender GravityZone Business Security Cloud.

Download Integration Guide for configuration instructions and more information.