Main Features
The core features of FortiDeceptor 1.0.1 include the following:
Dashboard Summary
The System Status dashboard displays widgets that provide Deception VM distribution, high level Incident and Event information and enable you to configure some basic system settings.
Deception
The Deception menu contains views that allow you to deploy and monitor Deception VMs on your network. These are:
- Deception Images
The Deception Images view displays Windows and Linux VM Images that you can use for creating Deception VMs.
- Monitored Network
The Monitored Network view allows administrators to set up a monitoring interface into a VLAN or a subnet.
- Deploy Wizard
The Deploy Wizard allows you create and deploy Deception VMs on your network.
- Deception Status
The Deception Status view shows the status of the decoys deployed on your network, and allows you to view, start, stop, delete, and download token packages as well as test an attack.
- Deception Map
The Deception Map view is a visual representation of the entire network that shows Deception VMs, Decoys, Tokens and Incidents.
- Whitelist
The Whitelist view is used to add an IP address that can be used by an administrator to log on to the network.
Incident
The Incident Menu provides an analysis of the detections by deception VMs. Review in the GUI or export to PDF. This includes:
- Analysis
The Analysis view lists the Event related incidents detected by FortiDeceptor, and allows you view the entire timeline of the events.
- Campaign
The Campaign view lists the Attack related events detected by FortiDeceptor and the full timeline of the attack.
- Attack Map
The Attack Map view is a visual representation of the entire network showing the Deception VMs, attackers, victims, and ongoing attacks.
Network
The Network menu provides interface, System DNS, and routing management options.
System
The System Menu provides views for adding Administrators, Admin Profiles, Certificates, LDAP and RADIUS servers, Mail Servers, SNMP, and other setting configurations.
Log
The Log menu provides views for All Events and the ability to add Log Servers.