Hypervisor Introspection

IT TAKES 3 MONTHS TO UNCOVER A BREACH

In 2017, it took enterprises an average of 3 months to uncover a breach, according to Mandiant M-Trends 2018 Report. By that time, the data is already exposed and the company’s reputation is at risk. Businesses undergoing a digital transformation can overpower sophisticated attackers through memory introspection deep within the hypervisor. No exploit can compromise or evade it.

Introducing a Revolution in Security

By joining their considerable expertise in IT security and data center virtualization, Bitdefender and Citrix have developed an entirely new security layer which malware cannot compromise or evade – through raw memory introspection directly at the hypervisor level.

A revolutionary security layer.
Malware cannot reach it, and
cannot hide from it.

RAW MEMORY INTROSPECTION – THEY SAID IT WAS IMPOSSIBLE

Bitdefender Hypervisor Introspection (HVI) is the first security solution that is able to uncover memory violations that endpoint security tools sometimes miss by directly analyzing raw memory lines - thereby ensuring they are not being altered by malware.

ISOLATED AND IMPOSSIBLE TO COMPROMISE, EVEN BY KERNEL-LEVEL MALWARE

Positioned completely outside the operating system, with hardware-enforced isolation, and with no agent or drivers installed on the endpoints, Bitdefender Hypervisor Introspection is impossible to take down or compromise by rootkits or other kernel-level threats.

DETECTS ZERO-DAYS THAT HEURISTICS MISS

By focusing on techniques, rather than the payloads, Bitdefender HVI is able to stay ahead of attacks, and protect you against notorious attack gateways such as browser zero-days or spear-phishing emails with exploited files attached that are not visible from within the guest OS.

Eliminate Your
Security Blind Spots

RESPOND INSTANTLY TO ATTACKS

Apart from containing the attack in real time, Bitdefender HVI can also help remove the threat, by automatically injecting a temporary remediation tool in the affected Virtual Machine.

Effective Scanning With No Signature Updates

Instead of scanning among the millions of signatures or malicious behavior, memory introspection detects the handful of associated attack techniques, which are only visible at the hypervisor level, identifying zero-days as easily as any known exploit. Bitdefender HVI does not require signature updates, since the attack techniques do not change.

INDEPENDENT FROM AND FULLY COMPATIBLE WITH EVERY ENDPOINT SECURITY TOOL

Instead of inserting an agent into each VM, Bitdefender HVI detects and secures infrastructures directly at hypervisor level, through a security virtual appliance. This is why, unlike other vendors that require you to remove your endpoint protection and replace it with theirs, Bitdefender HVI is complementary to and compatible with any existing security tools.