Web Application Protection Solutions
Web Server Protection
SecureIIS web server security delivers integrated multi-layered Windows server protection. SecureIIS provides application layer protection via integration with the IIS platform as an ISAPI filter, protecting against known and unknown exploits, zero-day attacks, and unauthorized web access.
Application Layer Protection
eEye Digital Security pioneered the concept of application-layer protection, which has revolutionized proactive security. Unlike network-layer protection products, an application-layer solution works within the application that it is protecting. SecureIIS inspects requests as they come in from the network layer, as they are passed up to the kernel, and at every level of processing in between. If at any point SecureIIS detects a possible attack, it can take over and prevent unauthorized access and/or damage to the web server and host applications.
IIS ISAPI Integration
SecureIIS was developed as an ISAPI filter, which allows for a tighter integration with the web server as compared to other application firewalls. SecureIIS monitors data as it is processed by IIS and can block a request at any point if it resembles one of many classes of attack patterns; including SQL injection and cross site scripting. Because of eEye's extensive knowledge of the various ways in which IIS servers and web applications can be attacked, as well as the nature of an application firewall, even undiscovered vulnerabilities are secured and thwarted.
Unlike network firewalls and intrusion detection systems, SecureIIS does not rely upon a database of attack signatures that require regular updating. Instead, it uses multiple security filters to inspect web server traffic that could cause buffer overflows, parser evasions, directory traversal, or other attacks. Therefore, SecureIIS is able to block entire classes of attacks, including those attacks that have not yet been discovered. SecureIIS provides true zero-day protection for entire classes of attacks whether known or unknown.
Compatibility and Key Features
SecureIIS works with and protects all common web-based applications such as Flash, Cold Fusion, FrontPage, Outlook Web Access, and many third party and custom applications. Configurations can be modified without having to restart the web server, thus preventing disruption of the active website. SecureIIS runtime logs provide detailed explanations as to why requests were denied and allow for data to be exported in any number of different formats including tab delimited, text, and Excel. This activity can also be graphed in real-time based on class of attack. Regardless of the communications protocol, SecureIIS offers protection without affecting service levels on your web server, and even stops attacks on encrypted sessions based on the ability to analyze the content of HTTPS sessions before and after SSL encryption.
Designed by Security Research Experts
eEye is recognized as one of the most trusted and respected sources dedicated to improving IIS security. eEye's research team is credited with having discovered several high-severity IIS vulnerabilities that would have allowed an attacker to gain complete remote control over a susceptible server.
Windows IP Pro Readers Choice Award: SecureIIS Web Server Protection was selected second runner-up in the Web Application Security category of the WindowSecurity.com Readers’ Choice Awards Press Release
"When we were hit with a vulnerability, I was looking at our server logs and realized something was amiss," said Davis. "I shut our router down until I could figure it out, and what I learned was that SecureIIS saved us from a very serious attack. SecureIIS notified me that something unusual was going on and blocked it. That's the beauty of behavior-based security."
Lisa Davis, IT Specialist
The Iowa Department for the Blind