iAppSecure

AppSourceAnalytics On Demand AppScan AppSec Consulting AppSec Trainings AppSec Development

AppCodeScan iAppSecure - WAF wsScanner Web 2.0 Scanner

Web Application Firewall is emerging as first line of defense for customized web applications running with critical business objectives. Web Applications can be vulnerable to several attack vectors like SQL injection, Cross Site Scripting, Cross Site Request Forgery, Information disclosure etc. If attackers get successful in executing these attack vectors then they can compromise the security of the application layer along with user’s identity. To protect application against these attack vectors two important solutions are available – one needs to harden the code to mitigate the risk or to identify attack vectors at the gates before it hits the application code itself. Web Application Firewall can help in identifying the attack vectors and filter them before they hit to the application code. iAppSecure helps in protecting application layer assets against various types of threats and attacks without recoding single line.

Technical information:

iAppSecure is a comprehensive solution for IIS web server running with any sort of web applications running with ASP, ASP.NET, PHP, Java, ColdFusion etc. iAppSecure is IHTTPModule and can be hooked to HTTP processing pipe of IIS web server. It processes each incoming request and outgoing responses against set of important security rules.

Selecting your product for total solution:

We thoroughly assess web application of our client and build right set of rules for iAppSecure and pass them with the product that makes a complete valuable solution for the client. You can choose a complete solution or various different modules of iAppSecure depending on your needs. Here is a list of available modules.

»iAppSecure(Access) – In this module one can apply rules to control access and authorization. One can provide IP based access list, URL based resource access, session based user access and authorization.

»iAppSecure(Firewall) – In this module one can write rules for HTTP request and response filtering with great detail. It is possible to provided input validations, malicious traffic filtering, variable level filtering controls etc. This gives protection against all popular attack vectors and build solid defense for application layer.

»iAppSecure(Logging and IDS) – This module will provide in-depth logging for all incoming requests and record all intrusions on application layer.

»iAppSecure (XML) – This module provides XML filtering capabilities for application security. It is also possible to filter various different structures like JSON, XML-RPC, SOAP and REST based HTTP requests as well.

For more information please contact us at contact@blueinfy.com