Bitdefender XDR Sensor – Network

Description

Comprehensive Network Traffic Analysis (NTA)

The Bitdefender XDR Sensor – Network integrates advanced Network Traffic Analysis (NTA) into your holistic cyber security strategy by providing passive monitoring of all IPv4 and IPv6 communication across your network. As a dedicated virtual appliance (NSVA) for the GravityZone XDR platform, this sensor reliably captures network traffic via SPAN or TAP ports. It enriches existing XDR events with valuable metadata and detects even complex Advanced Persistent Threats (APTs), IoT threats and risky lateral movement. This is done entirely independently of traditional endpoint management, thereby closing a critical security gap.

Protection for IoT and unmanaged devices

In today’s threat landscape, endpoint protection alone is often insufficient. Unmanaged devices such as smart printers, IoT devices or personal smartphones on the corporate network are frequently used as entry points. If, for example, a compromised IoT device attempts to scan the network for unprotected servers, the Network Sensor detects this anomaly immediately and reports it to the system.

Seamless integration and NIS2 compliance

When configured in TAP mode, the sensor silently copies network traffic without impacting network performance. It pre-processes the collected events and sends them securely to the GravityZone platform, where they are seamlessly correlated with endpoint and identity data. Automated pre-filtering drastically reduces disruptive background noise, allowing your IT team to focus on genuine threats. At the same time, the integrated vulnerability scanning and continuous IoT discovery significantly minimise your organisation’s attack surface. By using this sensor, you also meet strict compliance requirements such as NIS2 through comprehensive, audit-ready logs and greatly increase visibility in hybrid environments. The straightforward OVF deployment requires only minimal resources – 2 CPUs and 2 GB of RAM – and provides you with a cybersecurity solution that monitors all traffic.

Features of Bitdefender XDR Sensor – Network

• TAP/SPAN Traffic Capture: Passive monitoring of all IPv4/IPv6 connections, including unmanaged devices.
• Event Pre-Processing: Filtering and metadata enrichment for XDR correlation and reduced alerts.
• IoT & Vulnerability Discovery: Automatic asset mapping and scan exclusions for NSVA IPs.
• Multi-Hypervisor-Support: VMware, Hyper-V, KVM, Azure vTAP – flexible deployment.
• Compliance-Logging: Data retention and export for NIS2 and GDPR audits.

Product FAQs

• How does the Network Sensor work?
  Passive via SPAN/TAP – copies traffic, analyses metadata, correlates with XDR sensors.
• What hardware does the NSVA require?
  Minimum 2 CPUs, 2 GB RAM; scalable according to throughput.
• Does it recognise unmanaged devices?
  Yes, all IPv4/IPv6 traffic, including IoT – comprehensive coverage.
• How long does the deployment take?
  OVF import and configuration in under an hour.