ServerDefender VP

Windows This is a Community Contributed Download

CategorySecure
LicenseFree to try
Supported byEmail, Phone, Knowledge base
Works WithIIS 6, IIS 7, IIS 7.5
DocumentationServerDefender VP Documentation
Updated onJuly 8, 2010
Uploaded byport80

Overview

ServerDefender Vulnerability Protection (VP) Web application firewall is designed to provide IMMEDIATE PROTECTION for Web sites and applications running on the Microsoft IIS Web server by blocking Web attacks including SQL injection, buffer overflows, cross-site scripting (XSS) and request forgery (CSRF), zero-day, brute force, dictionary, denial of service and others. SQL Injection - SDVP scrutinizes incoming data with a set of strict web application security controls thereby preventing SQL injection attacks attempting to use application code to access or corrupt database content. Cross-Site Scripting (XSS) - SDVP blocks XSS attacks often used in conjunction with phishing, social engineering, and other browser exploits, ultimately preventing malicious HTML or client-side scripts from being injected into Web pages viewed by others. Cross-Site Request Forgery - SDVP prevents orphaned sessions that could become points of attack and vulnerability, potentially sending a harmful pre-authenticated request to a vulnerable web application. Session Hardening - SDVP enforces your security policy in a stateful manner, making its web application security controls even more effective.

Features

  • Anti-hijacking control with hardened sessions
  • User input validation and sanitization
  • Fewer false positives with granular exceptions
  • Site-by-Site security control management
  • Advanced Bot detection and control
  • IP Blocking controls
  • Multiple configurable alerting options; including email, SNMP, syslog
  • Detailed daily reports via Web and Email
  • LogViewer with highly detailed searchable and filterable security logs
  • Multiple configuration wizards to aid with proper set-up and deployment

Benefits

  • Premium PCI compliant Web application firewall protection
  • Advanced protection against common attacks such as SQL injection, cross-site scripting (XSS), and more
  • Site awareness at a glance
  • No training or signatures required
  • Highly customizable security policies
  • Custom integration and testing services available

Requirements

The System Requirements for ServerDefender VP are as follows: A compatible version of IIS and Windows:
  • IIS 7.5 / Server 2008 R2 with Service Pack 2
  • IIS 7 / Server 2008 with Service Pack 2
  • IIS 6 / Server 2003 (all editions) with Service Pack 2
Compatible hardware:
  • x86 (32-bit)
  • x64 (64-bit)
Notes: The current ServerDefender VP 64-bit installer does not support scenarios in which one or more IIS application pools are running in 32-bit mode. Please contact Port80 Software Technical Support for additional information. IIS 5.0 Isolation (compatibility) Mode on IIS 6.0 / Server 2003 is not supported. For IIS 7.x / Server 2008 installations, the following IIS Role Services must be installed:
  • ISAPI Filters
  • ISAPI Extensions
  • IIS 6.0 Metabase Compatibility
  • IIS 6.0 Management Scripts and Tools