ThreatSentry 3.0 details

ThreatSentry is a Host Intrusion Prevention software application designed to protect Windows Web servers running Microsoft Internet Information Services (IIS). ThreatSentry delivers multi-layered protection via two core components. The first, an Application Firewall, is pre-configured with a knowledgebase of known exploitive techniques and attack characteristics. Administrator can establish explicit guidelines for permissible and/or denied activity. The application firewall is coupled with an advanced neural-based Behavioral Engine that organizes server requests into a multi-dimensional baseline of typical system activity. Each server connection is scrutinized by the rule-set configured in the application firewall and the behavioral baseline to identify and take action against any activity falling outside trusted parameters. ThreatSentrys intrusion prevention capabilities progressively improve as the baseline evolves automatically or based on input from the system administrator. ThreatSentry Key Features: Multi-layered protection - IIS Host Intrusion Prevention Software + Application Firewall Unsurpassed Protection from Known/New, Internal/External Threats ThreatSentry protects IIS servers from an array of vulnerabilities including Directory Traversal, Parameter Manipulation, Buffer Overflow, Parser Evasion, High-bit Shellcode, Printer Protocol, Remote Data Services, and others. Unparalleled Affordability and Ease-of-Use ThreatSentry is exceptionally easy to use and affordably priced for enterprises of any size. Logging, Reporting and Audit Features Review, sort, manage or export Security Alerts and Training Events. Track and audit reclassified events. Centralized Network Management ThreatSentry features a central console for multi-server management. Security Alert Notification ThreatSentry Security Alerts can be transmitted via email, pager and/or cellular phone. Fully integrated Firewall Blocks all network ports for IPs listed in the Blocked List.