The Web Intrusion Prevention System does not generate false positives because it utilizes deceptive tar traps to detect attackers with absolute certainty. The Web Security inserts detection points into the code including url’s, forms and server files to create a random and variable minefield all over the web application. These tar traps allow you to detect attackers during the reconnaissance phase of the attack, before they have successfully established an attack vector. Attackers are detected when they manipulate the detection points inserted into the code. And because attackers are manipulating code that has nothing to do with your Website or Web application, you can be absolutely certain that it is a malicious action– with no chance of a false positive.
Changing the Economics of Hacking
By making the attack surface variable and inserting deceptive detection points into the web application, Web Security makes hacking a website more time consuming, tedious and costly to an attacker.
Changing the Game on the Attacker
Attackers must now be careful to avoid detection. Your Web application is no longer passive. Instead it is actively making an attack more difficult for an attacker. Just one mistake and they identify themselves.
Simple Effective Detection
IT security professionals know that false positives diminish the effectiveness of any security program. By using this certainty-based approach, the Web Security technology solves this problem for Web attacks. Furthermore, this product works out-of-the-box and improves your web application security. There are no rules to write, no signatures to update, no ‘learning modes’ to monitor and no log-files to review — just attackers to prevent.
No Impact On Your Website
With Intrusion Deception, there is no affect on your Website and no need for anyone to re-write a line of code. All of the detection points are inserted intelligently at serve time and stripped out on the way back, meaning that the detection points never touch the application server. Normal users never see the detection points. The deceptive tar traps are only found by malicious attackers seeking to exploit vulnerabilities on your site. This innovative security product can be easily put in front of any website or Web application and will intelligently add a layer of deception to improve security.
Please contact us to arrange a free demonstration of intrusion deception.