 | | ServerDefender Web Application Firewall Software
Microsoft IIS Vulnerability, Signature and Behavioral Intrusion Detection & Prevention
The Internet is a rough neighborhood. Daily, we hear about Web site or Web application security breaches that cost businesses real dollars and divulge sensitive, private, and proprietary data. While most Web servers are firewalled and patched as quickly as possible, there is no native defense on Microsoft IIS Web servers against the myriad types of attacks possible through protocol-legal HTTP and HTTPS requests.
Can you differentiate legitimate from malicious hacker requests right now? If not, Web requests laden with attacks like SQL injection, buffer overflows, cross-site scripting (XSS) and request forgery (CSRF), directory traversal, zero-day, brute force, dictionary, denial of service and others will lead to privilege escalation, a hacked IIS server, and a very bad day.
Even Web security experts struggle to keep up with the flood of new attacks, so how can real-world Web developers or administrators, wearing multiple hats, be expected to do so? The complexity increases if you are running code that was developed without security in mind from the beginning, must maintain third party code, are preparing for the Payment Card Industry (PCI) Data Security Standard requirements, or face an imminent security audit. The list of worries and headaches goes on...
Your best defense today is a Web application firewall (WAF) with host IDS and IPS functionality (HIPS). If you are running any Web app (ASP, ASP.NET, ColdFusion, PHP, JSP, even JavaScript and AJAX) on a Microsoft IIS Web server, you need ServerDefender from Port80 Software, the leading developer of tools for IIS.
Explore a version of ServerDefender that meets your security, management, reporting and budgetary requirements:
 | ServerDefender Artificial Intelligence (AI) - Packed with Web attack signatures for out-of-the-box security, ServerDefender AI quickly goes beyond blacklisting by learning to distinguish legitimate from illegitimate traffic, automatically blocking the latter, to add progressively stronger protection to your IIS-hosted applications. Requires some training of the software over time... (learn more) |
 | ServerDefender Vulnerability Protection (VP) - Sometimes, the best defense is to make sure every piece of data you take in is as clean and safe as it can be. ServerDefender VP specializes in sanitization of inputs before they get to your IIS-hosted applications. Install, configure, and “forget it” app security... (coming soon!) |
| | |
