Preferred Vulnerability and Malware Scan Listing updated: January 25, 2010

Site Security Monitor is an online security service that scans, cleans and protects your website, web server and applications from malware and hacker exploits - and keeps your site secure using advanced SaaS technology. Site Security Monitor performs daily deep application, server, injection and form probing scans and also checks daily whether your site has malware hosted on it.

Subscribing customers receive "Safe Seals" which they may display on their website - half the price of others! We test each URL with over 120,000 different attack parameters.

• Company: SiteSecurityMonitor.com
• URL: www.sitesecuritymonitor.com
• Email: sales@sitesecuritymonitor.com
• Price: $60 per month

• Users' Rating: 5 [2 votes] - Vote
• Comments: 0 comments - Post

dotDefender Listing updated: December 6, 2007

dotDefender secures Websites from a broad range of HTTP-based attacks, including Session attacks (Denial of Service), Web application attacks (SQL injection, Cross-site scripting, Schema crawling, XPath injection, XPath XSS and known attack signatures), as well as requests originating from known attack sources (spammer bots and compromised servers). dotDefender installs on the Web server along with a predefined, configurable rule-base, thus enabling it to secure the Web environment from the moment it is deployed, with virtually no administrator intervention. 30-day evaluation version is available for download.

• Company: Applicure Technologies
• URL: www.dotdefender.com
• Email: info@applicure.com

• Users' Rating: 4.44 [16 votes] - Vote
• Comments: 0 comments - Post

N-Stalker Web Application Security Scanner Listing updated: February 26, 2010

N-Stalker Web Application Security Scanner 2009 is a web security assessment tool that incorporates the well-known N-Stealth HTTP Security Scanner and its 35,000 Web Attack Signature database, along with a Component-oriented Web Application Security Assessment technology, which is capable of sweeping your Web Application for a large number of vulnerabilities common to this environment, including Cross-site Scripting and SQL injection, Buffer Overflow and Parameter Tampering attacks and much more.

• Company: N-Stalker
• URL: www.nstalker.com
• Email: contact@nstalker.com
• Price: $299 - $7,000

• Users' Rating: 4.29 [28 votes] - Vote
• Comments: 0 comments - Post

Defiance Threat Management System Listing updated: February 26, 2010

Defiance Threat Management System (TMS) monitors and blocks attacks against data via web applications. Unwanted activity is detected transparently and alerts are sent automatically. Security breaches are prevented as attacks are blocked.

Not all threats are equally worrisome. Defiance Threat Management System web application firewall (WAF) provides threat level driven security policy escalation to dynamically change protection levels as conditions warrant. Security policy is defined at a granular level to afford complete control over threat definition. An adaptive learning mode assists in defining policy.

• Company: Protegrity Corporation
• URL: www.protegrity.com
• Email: info@protegrity.com

• Users' Rating: 4.18 [11 votes] - Vote
• Comments: 0 comments - Post

Acunetix Web Vulnerability Scanner Listing updated: February 26, 2010

Acunetix Web Vulnerability Scanner tests the security of your website by crawling through it and launching popular attacks such as cross site scripting, SQL injection and more. Identify vulnerabilities in shopping carts, forms, secured areas and other web applications before hackers do! 75% of internet attacks are on web based applications!

• Company: Acunetix
• URL: www.acunetix.com
• Email: info@acunetix.com

• Users' Rating: 4.18 [17 votes] - Vote
• Comments: 0 comments - Post

Sandcat Suite Listing updated: August 5, 2005

Sandcat is a tool for managing the risks associated with web-based deployments and applications. Using Sandcat as a part of a complete security initiative allows organizations to ensure regulatory compliance and to minimize their risk posture. Sandcat is a set of tools that lets you secure several different web applications. You can use Sandcat to secure web servers, application servers, and web application environments that are susceptible to a growing variety of preventable attacks, including buffer overflow, parameter tampering, cross site scripting, unauthorized access, and other remotely-triggered attacks.

• Company: Syhunt Security
• URL: www.syhunt.com
• Email: contact@syhunt.com

• Users' Rating: 4.11 [19 votes] - Vote
• Comments: 0 comments - Post

SecureIIS Web Server Protection Listing updated: July 5, 2006

Web servers provide a portal to your internal network, so they require a more formidable and customized level of protection above and beyond what network firewalls or IDS can provide. SecureIIS provides web server security for the Microsoft IIS platform, with windows server firewall protection from both known and unknown vulnerabilities. SecureIIS works within the IIS web server, actively inspecting all incoming requests at each stage of data processing to prevent potentially harmful network traffic — whether encrypted or not — from penetrating your server. Even un-patched web servers security needs are addressed and protected from potentially damaging "known" and "unknown" attacks. Unlike intrusion detection systems or server firewalls that rely on signature databases to determine if an attack is taking place, SecureIIS provides webserver security against entire classes of attacks, without the resource drain of constantly updating signature attack profiles.

• Company: eEye Digital Security
• URL: www.eeye.com
• Email: info@eeye.com
• Screenshot: click here
• Price: $1295

• Users' Rating: 3.78 [23 votes] - Vote
• Comments: 0 comments - Post

LockoutGuard Listing updated: June 19, 2008

LockoutGuard from Collective Software augments the capabilities of ISA 2006 to allow a “soft lockout”.

LockoutGuard can be configured to start denying authentication attempts before the AD lockout limit is reached. This acts as an additional tier of “lockout security”, safely locking the account out of the extranet. During soft lockout of a user's account, password guessing on the extranet will fail since LockoutGuard is blocking authentication attempts for that account. Even during this soft lockout, the user account can still be logged in from inside your LAN, or over a VPN. Thus, the DoS potential is substantially controlled, with a minimum inconvenience.

• Company: Collective Software
• URL: www.collectivesoftware.com
• Email: info@collectivesoftware.com

• Users' Rating: no votes - Vote
• Comments: 0 comments - Post

PageGuard Listing updated: June 19, 2008

PageGuard from Collective Software augments the capabilities of ISA 2006 to allow HTTP site publishing with HTTPS authentication. PageGuard integrates into ISA to solve protocol redirection without resorting to scripts or other changes on your web servers.

PageGuard can protect the authentication dialog on a dual HTTP/HTTPS listener and require login over HTTPS, without requiring all parts of the site to use HTTPS; PageGuard can specify certain publishing rules, URLs, and/or file extensions that should always be served over HTTPS. This flexibility allows you to protect certain content or pages such as: Sensitive documents, Secondary login forms of your internal servers that should be served over HTTPS when being transmitted over the Internet; PageGuard can specify certain publishing rules, URLs, and/or file extensions that should always be served over HTTP. This allows you to “force” connections to go to HTTP after authentication is completed, or after an HTTPS page has been viewed.

• Company: Collective Software
• URL: www.collectivesoftware.com
• Email: info@collectivesoftware.com

• Users' Rating: no votes - Vote
• Comments: 0 comments - Post