Port80 Software finally addressed the biggest layer of hacker signatures or fingerprints for Windows boxes -- the network TCP/IP layer -- with our new ServerMask appliances. Hackers use TCP/IP details and HTTP header data to probe and find system weaknesses. Enough is enough.
These babies pack a big anti-recon punch, defeating Nmap by default, and also add in a layer of TCP/IP authentication (one day in the distant future to be part of the protocol itself, we thinks) to provide robust intrusion prevention against DoS, IP spoofing and DNS cache poisoning attacks.
With a price under $1000, the ServerMask ip100 is a good deal, but limited on the transfer side (100 Mbps) -- the ServerMask IP1000 can handle up to 1 Gbps...
Here is the main appliance page:
http://www.port80software.com/products/servermask/appliances
And a good overview article on how the new ServerMask appliances work:
http://www.port80software.com/products/servermask/tcpipmasking
What do you think of Web and network anti-reconnaissance and server anonymization?
The naysayers say it is just “security by obscurity“, but there is a reason why we have stealth weaponry and camouflage for soldiers at war -- it adds an important layer of risk mitigation and misdirection that can provide the edge needed to win in battle -- or round out a full security-in-depth architecture to enhance and optimize firewalls and other IDS/IPS systems.
Beyond the appliances, we have some more security products coming out this year, including an update to ServerMask for IIS and a surprise for content leechers who prey on IIS… caveat hackor.
More to come,
Port80