Starting at $649.95
A new IIS Web Application Firewall that Protects, Learns and Alerts You to Web Application Attacks!
Advanced Attack Signature and Behavioral Learning Web Application Firewall
- Ability to go beyond limited pattern matching and policy-based systems to profile your Web traffic for trusted and untrusted Web request events
- Manage Web application security for multiple IIS Web servers on a local area network from one console
Advanced Behavioral Learning Web Application Firewall
The new ServerDefender Artificial Intelligence (AI) Web application firewall is designed to provide immediate protection for Web sites and applications running on the Microsoft IIS Web server by blocking known HTTP, IIS, Windows, and application attack signatures:
- HTTP methods
- URL characters and request elements
- URL query strings
- POST data
- Specific HTTP request headers.
ServerDefender AI then goes beyond mere signature blacklisting by learning, from your Web logs or by monitoring traffic with your guidance, exactly what is legitimate traffic for your site and blocking anything else:
- An advanced behavioral engine organizes IIS server requests into a multi-dimensional baseline of normal system activity.
- Each server connection and request is scrutinized by the rule-set configured in ServerDefender AI and also by the behavioral baseline to identify and take action against any activity falling outside trusted parameters.
- ServerDefender's anomaly detection and intrusion prevention capabilities progressively improve as the baseline evolves automatically or based on input from Web administrators.
Combining attack countermeasures -- ranging from 404 error presentation, robust IP blocking to IIS shut-down -- with reporting and real time alerts (via e-mail, SMS/text message, and instant messaging services), ServerDefender AI is the complete solution. The software analyzes, detects and responds to suspicious activity, accurately differentiating between trusted and untrusted behavior to thwart hacker attacks such as:
- SQL injection
- cross-site scripting (XSS)
- request forgery (CSRF)
- buffer overflows
- directory traversal
- zero-day
- brute force
- dictionary
An advanced behavioral engine (AI) organizes IIS server requests into a multi-dimensional baseline of normal system activity. Each server connection and request is scrutinized by the rule-set configured in ServerDefender AI and also by the behavioral baseline to identify and take action against any activity falling outside trusted parameters. ServerDefender's anomaly detection and intrusion prevention capabilities progressively improve as the baseline evolves automatically or based on input from Web administrators.
Combining attack countermeasures -- ranging from 404 error presentation, robust IP blocking at the IIS- or network-layer to IIS shut-down -- with reporting and real time alerts (via e-mail, SMS/text message, and instant messaging services), ServerDefender AI is the complete solution. The software monitors, analyzes, detects and responds to suspicious activity and accurately differentiates between trusted and untrusted behavior to thwart hacker attacks like
- SQL injection
- cross-site scripting (XSS)
- request forgery (CSRF)
- directory traversal
- zero-day
- brute force
- dictionary
In short, only safe, trusted requests are allowed to the application and database layers of your Web site or app.
ServerDefender AI adds its own external layer to protect application source code and database layers from attack with no additional hardware infrastructure, no single point of failure, and low overhead. This Web app firewall leverages your existing IIS Web server resources to stop unauthorized access or remote control of your network, site defacement, and loss of data.
