| | |  | | | » Home | | |
 FALCOVE AND ALLESTA DOWNLOADS ARE REMOVED! DOWNLOADS ARE AVAILABLE FOR ENTERPRISE CUSTOMERS ONLY! PLEASE USE CONTACT FORM TO GET EXTENDED INFORMATION!
According to recent researches done by some honorable international research organizations; hackers have been concentrating on application layer attacks on a growing percentage. In 2004 only, the number of attacks targeted finance corporations worldwide doubled and 40 percent of these corporations had financial loss from these attacks (Deloitte & Touche LLP). Nowadays, nearly 4 out of 5 attacks target websites at application layer (Gartner, Yankee Group, CERT).
Applications with non-secure web coding and with misconfigured database connections to servers allow hackers to reach sensitive databases (members, IDs, passwords, accounts, credit cards etc.) and any confidential information related to corporate policies that must remain secret. Since network layer precautions do nothing with the applications running on a website or database connections to the server, they do not meet the security needs of web sites as a whole. For example, a network firewall cannot hinder hackers from attacking on a website because hackers use port 80 which must be open to the Internet. In other words they need only a web browser to attack. Network firewalls or any other network layer defense is then futile against application layer attacks.
The only way to struggle with application security threats was to develop an automated tool that could help companies ensure their web application security through vulnerability scanning and self-penetration. We developed Falcove by combining our skills and expertise in website auditing and system penetration.
Falcove is designed both as a scanner and a penetration tool. This feature makes Falcove the most powerful website auditing tool in information security market. Penetration is the most critical part of an auditing process. So in order to help companies fix their websites' security threats, we were compelled to assemble both scanning and penetration modules in one body.
Allesta is designed a complete security firewall for a web server. It covers all security needs of a web server. Allesta includes 3 different modules to protect your server. Allesta controls all IP traffic at packet level. Filtering module allows you to protect against web application attacks. Allesta Connection Limiting allows you to protect against DDOS attacks.
|
|
