Contact Join Us Sitemap Search Home

 
 
 
 
 

Most intrusion prevention system use signature based detection as their primary detection technique. Detecting newer or undocumented attacks become near to impossible for these devices.

A detection system must have a attack documenting signature in order to detect an instance of the attack. This problem is solved with two unique techniques that are deployed by SiteVaxinPro.

Protocol Anomaly Based Detection
All SiteVaxinPro devices carry a protocol anomaly framework that use specific protocol anomaly plugins for data analysis. These plugins help the device understand the underlying application protocol. Any deviation to the protocol standard or implemented standard is considered to be an anomaly. The protocol anomaly plugins are extremely tuned to reduce false positives.

Payload Vectoring Detection
Attacks on undocumented vulnerabilities are the most difficult to detect and mitigate. However it is seen that most attacks result in control of the target being passed over to attacker. This is done by executing the attackers code also called the payload on the target machine. Special techniques are used to document all the different kinds of payloads that may be used by an attacker.

 
 
 
 

| Company | Products | Solutions | Technology | Services | Partners | Research | Support |