Platform Support

dotDefender for IIS

dotDefender for Apache

Datasheets

Web Application Firewall

PCI DSS Compliance

For hosting providers

Fighting Threats

Penetration test and Code Review
FW/SSL/IPS/Proxy/AV/AS
Web Application Firewall
read more

Signature Knowledgebase

The Signature Knowledgebase web application security engine uses signatures to detect requests from known malicious sources such as hackers and spammers. It identifies bad users’ agents and prevents hacking tools from gathering information about vulnerabilities in an application.

dotDefender identifies known attack sources and blocks requests originating from them. These include:

Compromised / Hacked Servers
Anti-Proxy Protection
Known Worms Signatures
Bad user-agents signatures
Known Spammer Crawlers
MPack Protection

Compromised / Hacked Servers

A compromised server is one which has been accessed and manipulated by unauthorized attackers. Hackers use compromised servers for a variety of attacks, thus presenting a high risk to the application.

Anti-Proxy Protection

Proxy servers operate as intermediary entities to web servers. Proxy servers perform various functions or operations on behalf of another application or system, so the origin of the request remains anonymous. Anti-proxy protection protects web servers from becoming proxies that serve unauthorized users.

what is proxy attack? A proxy attack is an attempt to use your web server as a jumping point to attack other sites. Your web server then attacks other sites.

Known Worms Signatures

Web application worms exploit the vulnerability of applications by sending crafted requests with the intent to execute or inject code, locate an SQL injection vulnerability in an application or perform cross-site scripting attacks. Worms replicate and distribute themselves, and inflict damage similar to computer viruses.

Bad user-agents signatures

Bad User-Agents signatures identify application-level scanners that attackers use to probe web applications. Such probing is a preliminary step in preparing an attack, and is therefore dangerous.

Known Spammer Crawlers

Spammer crawlers consist of automatic software that crawls into web sites, scanning e-mail addresses, page links, image paths and IP addresses. Collecting this information breaches the privacy of website users.