Privacyware, an innovative provider of proactive desktop and server defense and enterprise security analytics solutions defends Windows Web servers from known and new Internet Information Services vulnerabilities and provides flexible and rapid configuration of enterprise-specific policies with its IIS Application Firewall and Host Intrusion Prevention software, ThreatSentry 3.0.

“ThreatSentry secures Web-related traffic and provides enlightening insight into the full spectrum of unwanted requests and possible policy violations on critical systems that rely on Microsoft Internet Information Services, (IIS),” stated Privacyware CEO, Greg Salvato. “At a list price of $399 per server, organizations need not forego the proactive defense afforded by behavioral technology breakthroughs due to budgetary constraints.”

Key Benefits

Unsurpassed Protection from Known/New, Internal/External Threats –
Advanced system/behavior profiling and comparative analysis engine enables ThreatSentry to extend the intrusion detection and prevention capabilities of conventional pattern matching, rules, and policy-based systems. ThreatSentry supports single or multiple server environments and provides protection from an array of documented exploitive techniques including Directory Traversal, Cross-site scripting, Parameter Manipulation, Buffer Overflow, Denial of Service, SQL Injection, Parser Evasion, High-bit Shellcode, Printer Protocol, and Remote Data Services, but also stops any unusual activity falling outside acceptable patterns of use.

Breakthrough Combination of Advanced Technologies –
ThreatSentry is pre-configured with a knowledgebase of known exploitive techniques and attack characteristics. The knowledgebase is complemented by a behavioral engine that continuously learns typical system activity to establish a dynamic baseline. Each server connection is compared against the knowledgebase and system baseline to identify and take action against any activity falling outside trusted parameters. ThreatSentry’s intrusion prevention capabilities progressively improve as the baseline evolves automatically or based on input from the system administrator.  

Extensive Administrative Control –
The ThreatSentry management console provides administrators ultra-granular control over configuration settings, trusted and untrusted event management, rule and signature defnition, blocked IPs, alert notification and the sensitivity level of behavioral engine.

Unparalleled Affordability and Ease-of-Use –
Implemented as an IIS ISAPI filter and manifested as a snap-in in to the Microsoft Management Console (MMC), ThreatSentry is exceptionally easy to use and affordably priced for enterprises of any size.

“ThreatSentry’s depth of protection and versatility are its defining features,” said Privacyware Chief Technologist, Dr. Konstantin Malkov. “Our customers conduct regular audits against their systems and when vulnerabilities in their servers and Web applications are revealed, they often find that either the default application firewall configuration or the behavioral engine already addresses the issue. If not, ThreatSentry is designed to enable administrators to easily implement new defense techniques and achieve the most comprehensive and proactive protection possible.”

ThreatSentry supports single or multiple server environments and provides protection from an array of documented exploitive techniques including Directory Traversal, Cross-site scripting, Parameter Manipulation, Buffer Overflow, Denial of Service, SQL Injection, Parser Evasion, High-bit Shellcode, Printer Protocol, and Remote Data Services, but also stops any unusual activity falling outside acceptable patterns of use.