HarfangLab EDR/EPP Platform

HarfangLab is a European sovereign endpoint security platform combining Endpoint Detection and Response (EDR) and Endpoint Protection Platform (EPP) with Attack Surface Management (ASM) capabilities in a unified solution. Founded in 2018 by former French Navy, Ministry of Armed Forces, and ANSSI professionals, HarfangLab is the first and only EDR to receive ANSSI Qualification (January 2025) and the first EDR certified by both ANSSI (2020) and BSI. The platform protects workstations and servers against advanced threats including malware, ransomware, fileless attacks, zero-day exploits, and targeted attacks using transparent, customizable detection rules in standardized YARA and Sigma formats.

The platform features proprietary AI models Ashley for unknown malware prediction and malicious PowerShell detection deployed directly in endpoint agents, and Kio as a natural language security assistant integrated into the console for documentation queries and investigation support. HarfangLab offers identical detection capabilities across cloud, on-premises, private cloud (SecNumCloud), and hybrid deployments with full feature parity, ensuring organizations meet sovereignty and compliance requirements without performance compromise. The EPP component (Shield) integrates IKARUS antivirus engine with continuously updated malware database, customizable firewall, and device control. The Scout feature set enhances the EDR/EPP platform with Attack Surface Management capabilities including vulnerability assessment with continuous CVE monitoring from NIST, shadow IT discovery via network probes, and correlation with EDR security events in a single console.

HarfangLab achieved top-tier performance ranking as European leader in 2023 MITRE ATT&CK Evaluations during its first participation. The platform protects 600+ customers including government agencies, CAC 40 corporations, and enterprises across highly sensitive sectors, managing 800,000+ endpoints with 50+ MSSP partners across France and Europe. All deployment options ensure data sovereignty and compliance with GDPR, NIS2, DORA, and ISO 27001 regulations through French-developed technology respecting European digital independence principles.