AhnLab

  • Privacy & Security
  • EULA
  • Contact Us
  • Terms of Use
  • Sitemap

Subscribe to Our Newsletter

Stay informed with AhnLab’s latest threat intelligence
and security insights delivered monthly to your inbox.

Country
AhnLab V3 Engine VersionOES :
Update Engine Now →
  • Visit our LinkedIn Profile
  • Visit our Twitter page
  • Visit our YouTube channel
  • © AhnLab, Inc. All rights reserved.
  • ASEC
  • MyCompany(ELS)
  • AhnLab Document Center
skip navigation
  • 메뉴
  • 본문
  • 하단 정보(링크)
  • Products
    • AhnLab PLUS Platform
    • AhnLab Endpoint PLUS
      • Anti-Malware
      • EPP
      • Sandbox (ATD)
      • EDR
      • SMB Security
      • Mobile Security
    • AhnLab Network PLUS
      • NGFW
      • IPS
      • DDoS Mitigation
      • Sandbox (ATD)
      • Threat Management
    • AhnLab Cloud PLUS
      • CWPP
      • Cloud NGFW
      • Cloud IPS
      • Cloud Threat Management
    • AhnLab Connect PLUS
      • XDR
      • Threat Intelligence
      • SOAR
    • AhnLab CPS PLUS
      • CPS Protection Management
      • OT Endpoint Protection
      • OT IDS
      • OT Portable AV
      • OT Firewall
      • OT Data Diode
      • OT Network Sandbox
      • IT Endpoint Protection
      • IT Anti-Malware
      • CPS Threat Intelligence
    • AhnLab AI PLUS
    • All Products and Services
  • Services
    • AhnLab Service PLUS
      • MDR
      • MSS
      • Professional Service
      • Security Consulting
      • Digital Forensics
      • Cloud Managed Service
      • Global Partners
    • All Products and Services
  • Solution
    • Ransomware Protection
    • Hybrid Cloud Security
    • Zero Trust
    • CPS Protection
    • SOC Modernization
    • TDR
    • DDoS Mitigation
  • Support
    • Technical Support
    • Threat Inquiry
    • Online Support
      • Q&A
    • Notice
    • Download
    • AhnLab Document Center
  • Content Center
    • Content Center
      • Cybersecurity 101
    • ASEC
      • Threat Descriptions
      • Threat Actor Naming
      • ASEC Security Advisory
      • ASEC Blog
    • Highlights
      • MITRE ATT&CK Eval Round 7
      • AhnLab 30th Anniversary
      • Frost Radar CPS Security Leader
  • Partners
  • Company
    • About Us
    • Strategic Materials
my page
Sign InSign Up
언어 선택

No recent searches

    • Contact Us
    • My Company
    • Security Map
HOME
Products
  • Products
  • Services
  • Solution
  • Support
  • Content Center
  • Partners
  • Company
AhnLab CPS PLUS
  • Other Products
  • AhnLab PLUS Platform
  • AhnLab Endpoint PLUS
  • AhnLab Network PLUS
  • AhnLab Cloud PLUS
  • AhnLab Connect PLUS
  • AhnLab CPS PLUS
  • AhnLab AI PLUS
  • All Products and Services
OT IDS
  • CPS Protection Management
  • OT Endpoint Protection
  • OT IDS
  • OT Portable AV
  • OT Firewall
  • OT Data Diode
  • OT Network Sandbox
  • IT Endpoint Protection
  • IT Anti-Malware
  • CPS Threat Intelligence

AhnLab XTD

Deep Visibility into OT Assets and Cyber Threats

Read BrochureContact SalesWeb Page: Frost Radar 2025

AhnLab XTD is an OT visibility and threat detection module providing comprehensive visibility across OT networks and detect malicious traffic and abnormal behavior in real-time.

Why AhnLab XTD

Purpose-built Solution for OT Environments

Precise Threat Detection

AhnLab XTD is an OT-dedicated IDS solution that precisely detects cyber threats, including cyber-attacks originating from IT networks, residual vulnerabilities, and malware propagated across internal systems.

01

Unmatched OT Visibility

AhnLab XTD empowers customers with comprehensive visibility across OT assets by leveraging its protocol profiling and deep packet inspection (DPI) technologies. The integration with AhnLab EPS, our OT endpoint protection module, allows XTD to consolidate asset information identified by an EPS agent, delivering unmatched OT visibility across the OT network and endpoint.

02

Ensuring System Availability

Prioritizing system availability, AhnLab XTD leverages the passive monitoring approach to minimize traffic transmitted from sensors to servers. As such, it can gain holistic visibility and precisely detect cyber threats without compromising system performance.

03

Key Features

Evolving OT Security with Seamless Integration

Obtaining Visibility

AhnLab XTD's primary objective is to enable customers to efficiently manage diverse OT assets by precisely identifying OT, IT, and IoT devices. It also identifies network sessions between assets and delivers a bird-eye view of OT asset status via its topology map.

Cyber Threat Detection

AhnLab XTD protects OT environments by detecting cyber threats from IT domains, vulnerability exploitations, and malware targeting internal systems. Equipped with our "TS engine" for malware detection and analysis, XTD provides unparalleled malware and ransomware detection capabilities.

In-depth Protocol Analysis

Armed with deep packet inspection (DPI) technology, AhnLab XTD analyzes various OT protocols, allowing customers to identify assets and detect abnormal modifications of ICS settings. Thus, administrators can monitor and respond to OT machine malfunctions in real time.

Baseline-based Anomaly Detection

AhnLab XTD provides baseline-based anomaly detection capabilities. XTD registers assets, networks, and protocols in the "Learn Mode", and alerts customers if any changes are made in the "Operation Mode", strengthening the stability of the entire system.

Dynamic Integration

The central manager, AhnLab ICM, unifies the monitoring and management of core CPS protection modules, including AhnLab XTD. Extending its visibility by integrating with AhnLab EPS, XTD can also remotely execute AhnLab Xcanner to detect and clean malware in OT machines.

Cyber Threat Detection

AhnLab XTD protects OT environments by detecting cyber threats from IT domains, vulnerability exploitations, and malware targeting internal systems. Equipped with our "TS engine" for malware detection and analysis, XTD provides unparalleled malware and ransomware detection capabilities.

In-depth Protocol Analysis

Armed with deep packet inspection (DPI) technology, AhnLab XTD analyzes various OT protocols, allowing customers to identify assets and detect abnormal modifications of ICS settings. Thus, administrators can monitor and respond to OT machine malfunctions in real time.

Baseline-based Anomaly Detection

AhnLab XTD provides baseline-based anomaly detection capabilities. XTD registers assets, networks, and protocols in the "Learn Mode", and alerts customers if any changes are made in the "Operation Mode", strengthening the stability of the entire system.

Dynamic Integration

The central manager, AhnLab ICM, unifies the monitoring and management of core CPS protection modules, including AhnLab XTD. Extending its visibility by integrating with AhnLab EPS, XTD can also remotely execute AhnLab Xcanner to detect and clean malware in OT machines.

Solution

A Core Pillar of CPS Protection

  • CPS Protection
    More

    CPS Protection

    A recent IT-OT convergence is demanding a unified security approach to protecting cyber-physical systems (CPS). AhnLab CPS PLUS, our CPS protection platform, successfully satisfies the security requirements of various industries.

Related Products

  • More

    AhnLab ICM

    Central monitoring and management of CPS protection modules

  • More

    AhnLab EPS

    Application/device control and malware detection for OT endpoint

  • More

    AhnLab Xcanner

    Portable AV scanning and cleaning malware for OT endpoint

  • More

    AhnLab XTG

    OT network segmentation and perimeter security

  • More

    AhnLab Data Diode

    OT network access control via unidirectional data transfer

  • More

    AhnLab MDS

    Network sandboxing for addressing unknown malware

  • More

    AhnLab EPP

    Endpoint protection for IT systems in CPS environments

  • More

    AhnLab V3

    Anti-malware for IT systems in CPS environments

  • More

    AhnLab TIP

    CPS threat intelligence across IT and OT environments

Industry Recognition

2509027944544884.png

Recognized as CPS Security Leader
in Frost Radar™ 2025

“With systematic threat management process and deep asset visibility, AhnLab CPS PLUS delivers cutting-edge security for cyber-physical systems. Organizations can benefit from AhnLab’s proactive threat identification, highly accurate detection, and prioritized response with a platform-powered experience.”

Adrian Drozd, VP of Research & Practice Lead of Security Practice, Frost & Sullivan

2509027945418282.png

Together We Make CPS Environments More Secure

As a member of OT-ISAC, we work hand-in-hand with its expert analysts, sharing attack tactics, threat intelligence, and best practices to fortify defenses against evolving cyber threats. Our unified CPS protection platform, powered by abundant expertise, references, and experience, contributes to keeping a global CPS community more secure.

Resources

  • White Paper

    Unified Approach to CPS Protection

    download
  • Brochure

    AhnLab CPS PLUS

    download
  • Brochure

    AhnLab XTD

    download
  • Article

    Frost Radar 2025: CPS Security Market Leader

    link
  • Demo

    [Demo] AhnLab CPS PLUS – Securing CPS Network and Endpoint Asset Visibility

    link

FAQs

Frequently Asked Questions

The key differentiators of AhnLab XTD are its threat detection capabilities and deep visibility, which are based on its integration with OT endpoint protection modules.

First, XTD is the only one-of-a-kind that leverages a malware analysis engine (AhnLab TS Engine) to achieve real-time malware detection across OT networks. Its integration with AhnLab EPS allows XTD to inspect and remediate infected or suspicious machines by remotely executing AhnLab Xcanner.

Also, XTD can consolidate the endpoint asset information identified by the EPS agent, thereby delivering next-level visibility across the OT network and endpoint for customers. Furthermore, the central manager, AhnLab ICM, can look up all XTD events and logs.

When security threats are detected in a system, AhnLab XTD integrates with AhnLab's OT endpoint security module, AhnLab EPS, to run the portable OT anti-malware AhnLab Xcanner and diagnose infected devices.

Customers won't be able to find anything like the above from our competitors.
AhnLab XTD offers two deployment options to suit customer needs.
• Separating sensor and server: This method deploys sensors per environment and connects them to the central server. It suits facilities with multiple operation environments.
• All-in-one: This method embeds sensors in the server module. It suits small-sized facilities.
AhnLab XTD leverages a distributed processing method, with sensors performing detection and analysis and servers conducting unified monitoring and configuration management. There is not a massive amount of traffic transmitted, as sensors only send detection results to servers, minimizing performance impact on the network.
AhnLab XTD supports protocols generally used in OT environments. For custom protocols that many companies are using, our experts swiftly analyze them and reflect them on the module.