ThreatSentry 4 - IIS Web Application Firewall

Windows This is a Community Contributed Download

CategorySecure
LicenseFree to try
Supported byEmail, Phone, Knowledge base, Forums
Works WithIIS 5, IIS 5.1, IIS 6, IIS 7, IIS 7.5
DocumentationThreatSentry 4 - IIS Web Application Firewall Documentation
Updated onAugust 24, 2010
Uploaded byprivacyware

Overview

ThreatSentry is a Web Application Firewall and Intrusion Prevention solution that helps system administrators improve web application security and comply with regulatory demands such as Section 6.6 of the Payment Card Industry Data Security Standard. ThreatSentry 4 supports Windows Server 2008 R2 and IIS 7 on 32 and 64 bit systems. An ISAPI Extension hosted in MMC, ThreatSentry’s knowledgebase of pre-configured filters is designed to identify and block a broad range of web application threats including Structured Query Language (SQL) Injection, DoS, Cross Site Request Forgery (CSRF/XSRF), Cross-Site Scripting (XSS) and other attack techniques. ThreatSentry’s conventional defense capabilities are augmented by a behavior-based Intrusion prevention component that profiles typical request activity and detects unusual events and patterns indicative of zero-day and targeted attacks. Default configuration settings are designed to deliver optimal out-of-box performance and administrative ease.

Features

New in ThreatSentry 4.0
- Expanded OS support: Windows Server 2008 R2 x86/x64, IIS 5, 6 & 7x.
- Improved defense capabilities specific to OWASP, WAFEC and PCI DSS
- Re-architected enterprise-grade design
- Enhanced configuration granularity:
    o Parameter filtering for specific request types – POST, GET, etc.
    o Rule-specific URL/s exclusion capabilities.
    o URI Encoding support.
    o Regular Expression support for parameter rules/filtering.
    o Non-display of Sensitive Data.
    o and more…
- Enhanced logging of attacks and unwanted traffic.

Existing features:
- AI-Based behavioral engine/IPS
- State-of-the-art Web Application Firewall
- Protection from known & new threats to IIS
- Protection from internal and external threats to IIS
- Comprehensive Intrusion & Threat Blocking options
- SQL Injection, XSS, DDOS, etc. protection
- Extensive Requests rules control/management
- Email/Cell Phone Security Alert notification
- Security Alert/Training Data logs
- Untrusted Event WHOIS database search
- On-screen & Audio Security Alert notification
- Adjust settings w/out IIS restart
- All-Port Network-layer Firewall for Blocked IPs (32 bit only)
- Passive Monitoring mode
- Free install/evaluation support
- Technical Support
- HTML Reports 

Benefits

- Defend your Web Applications and data from SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery, DoS and other threats.
- Achieve PCI DSS compliance requirements “out-of-the-box”.
- Gain visibility into the full range of Web Application vulnerabilities and threats to your Web Servers.
- Support IIS 5 through IIS 7.5, Windows Server 2000 through 2008 R2 x64/x86.
- Maximize your IT budget - only $649 per server.

Requirements

- IIS 7.0/7.5 (Windows Server 2008/R2 x86/x64)
- IIS 6.0 (Windows Server 2003 – x86/x64)
- IIS 5.0 (Windows Server 2000)