Fortinet Security Fabric detecting and protecting a zero-day/malicious attack.
This is a demo of the Fortinet Security Fabric in action. This time showing a FortiGate (Firewall) connected to a FortiSandbox for file inspection. I attempt to download a malicious file. The attempt is hidden on an HTTPS (encrypted) site. The file is detected and blocked from spreading across the network. The information about the malicious file, its origin, and subsequent file actions, are shared across all pieces of the Fortinet Security Fabric, including endpoint clients, other firewalls, email, and even web protections.
The first malicious file was allowed into the network for demo purposes. Fortinet can quarantine and/or clean the first download.
This is a demo of the Fortinet Security Fabric in action. This time I am showing a FortiWEB (WAF) connected to a FortiSandbox for file inspection. I attempt to upload an obfuscated malicious file. The file should have a .EXE extension. I attempted to hide the file contents by changing its extension. The file is detected and blocked/prevented from being uploaded to the web server. The benign/non-malicious file is uploaded without any interruption or user/admin interaction. The malicious file information was shared across all pieces of the Fortinet Security Fabric, including endpoint clients, firewalls, and other devices.