Improve the security of your applications from within the hypervisor — and get 360 degree visibility into every workload — with VMware AppDefense. Rather than chasing after threats, reduce your attack surface by leveraging AppDefense to model intended application behavior, monitor for anomalous activity, and provide application control, reputation scoring, and security.
Ensure the integrity of the OS/hypervisor, from a unique vantage point within the hypervisor itself. Verify the reputation of every executable, understand all process-process communications on the network, and highlight any software vulnerabilities.
Avoid installing and managing additional host agents. AppDefense is embedded within the hypervisor, providing a simple 1-click deployment model to every host — and the ability to manage directly from the familiar vSphere client.
"Root can’t defend against root” — an adversary on a compromised workload can easily disable traditional endpoint protection agents. In contrast, AppDefense, a module inside the vSphere hypervisor, operates as a “super-root”, isolating it from the attack surface.
Hear Tom Corn, VMware’s SVP/GM of Security Technologies and Strategy and Shawn Bass, VMware’s CTO of End User Computing reveal VMware’s security strategy and vision
Streamline security reviews by enabling infrastructure and security teams to collaborate from a single pane of glass. Visualize topology maps for every application and VM in your environment, and drill-down to see detailed workload context — roles, meta-data, process, and network activity.
Enable application control and whitelisting — and patch risky software sooner — by continuously scanning workloads to highlight vulnerabilities in the OS, hypervisor, or application software. Ensure OS integrity, and provide reputation scores for every process.
Shield crown jewel applications running inside micro-segments - such as shared services, domain controllers, and critical assets - by modeling “known good” behavior and by providing fewer and more authoritative alerts for anomalous behavior.
Provide additional workload context to NSX to assist in the definition of micro-segments, and enable faster and more granular responses to risky workload behavior, by pushing into NSX policies for actions such as quarantining, activity logging, etc.
Why AppDefense is the Next Big Thing
Interfaith Medical Center enhanced security for vSphere infrastructure by moving to a zero-trust security model with NSX and AppDefense.