Protect your apps and your customers against application layer attacks

Transcription

1 Protect your apps and your customers against application layer attacks Development 1 IT Operations VULNERABILITY DETECTION Bots, hackers, and other bad actors will find and exploit vulnerabilities in web applications caused by coding errors and weaknesses in dependencies. IMMUNIO S Key Benefits Detects and protects against the OWASP Top 10 runtime threats, including SQLi, XSS, RCE, and CSRF* 2 NO CODE CHANGES REQUIRED The self-contained IMMUNIO agent runs inside the process of your application, without requiring any code changes in the application itself. 3 SECURE YOUR CUSTOMERS DATA The IMMUNIO service is designed specifically to secure web assets in the cloud and within local networks, protecting your customers data and your business. Blocks brute force, injection, and other automated attacks Complete coverage and reporting of every attack instance Provides full diagnostic details about code vulnerabilities Avoids time-wasting false positives and theoretical issues Offers insight into attackers identity and attack 4 AUTOMATIC PROTECTION When your app is exposed to a malicious attack, the agent identifies the attacker and type of attack and blocks it. User data is protected and you have the insight you need into the coding vulnerabilities you need to fix. methodology Installs in two minutes no source code changes required *Detection only IMMUNIO is exciting to build on and a great technology we have added to the arsenal of tools we leverage to build the world s leading survey platform. - KEN RICKETS, Senior Director of Security and Operations at SurveyMonkey

2 How IMMUNIO Works IMMUNIO is based on patented runtime self-protection technology. The IMMUNIO agent is self-contained and independently protects its application, even if it becomes disconnected from the IMMUNIO service. User data is never exposed outside the agent, ensuring your apps remain in compliance with data protection mandates. Disrupts automated brute force attacks by serving up captchas Blocks sensitive data from being exposed by injection attacks Protects applications with known vulnerabilities until remediation resources are available Secures hard-to-monitor applications, for example when hundreds of web apps are running simultaneously on an internal network IMMUNIO provides a single source of truth about application security to help Development and IT Operations teams work together more effectively.

3 Knowledge is Power In addition to securing your customers and your applications, IMMUNIO enables development teams to quickly identify and prioritize vulnerability remediation efforts by providing vital information about the identity and severity of attackers. 1 IMMUNIO lets you monitor and review exploitation attempts across an unlimited number of applications. Attack details are propagated across your infrastructure, so an attack detected on one application is immediately flagged on every app server and for every monitored app in your account. 2 IMMUNIO agents deliver information on the time, origin, and type of every attack on your apps to a central reporting point. This information builds over time into a broad profile of attacks impacting your networks, enabling your web security team to map trends and deploy appropriate resources. 3 IMMUNIO also gives your developers full visibility into how the vulnerability in your code would have been exploited, including a stack trace down to the line of code (for SQLi, XSS, and RCE threats), reporting of request parameters, and how your app s behavior would have been modified.

4 IMMUNIO Attack Prevention IMMUNIO automatically protects your apps against common web-based attacks and many classes of zero-day vulnerabilities. Threat Type Automation attack Brute Force Common User Name Cookie Tampering Cross-site Scripting (XSS) CSRF Tampering Excessive HTTP 400s Excessive HTTP 500s HTTP Method Tampering HTTP Response Splitting Open Redirect Session Farming Remote Command Execution (RCE) Shellshock SQL Injection Stolen Account Suspicious Exception Suspicious HTTP Header Detection Protection Is IMMUNIO available for a deployment on premise? Yes, IMMUNIO is available for on-premise deployment. All the protection functionality is contained within the agent itself. Attack information is sent by the agent to the IMMUNIO back-end services, where they are analyzed and displayed for reporting purposes. Do I need to modify my source code to use IMMUNIO? No. IMMUNIO bootstraps itself into your application at runtime; it is not an SDK that has to be integrated into the application. You just need to include the IMMUNIO agent with your application and activate it with the application keys. Is there a performance impact to adding IMMUNIO to my application? While the performance overhead experienced by an end user may vary depending on the application type, the average overhead measure with IMMUNIO Ruby and Python agents is around 15 ms when all checks are turned on. For the Java agent, the overhead is less than 2 ms. Since all protection takes place inside the application directly, network latency is not a factor. How does IMMUNIO differ from other RASP technologies? There are three primary differences: Broader coverage of different vulnerabilities Code-level visibility into attacks Breadth of platform support

5 How Do I Get Started? To experience for yourself how easy it is to protect your applications with IMMUNIO, go to and click on Free Trial in the top right of the home page to get started. SYSTEM REQUIREMENTS What are the limitations on the trial version? Free trial version is unlimited in capability. It is limited in duration. By default the trial is set to 30 days. Longer evaluations can be arranged per request. Python Ruby Java Node.js IMMUNIO currently supports applications developed in: Ruby: MRI runtime version or newer, Rails 3.2 or newer Python: CPython runtime 2.6 or newer, Django or Pyramid Java: Java 6 or newer, Apache Tomcat or Jetty Node.js: Node.js version 0.12 or newer, Express 3 versions 3.2 or newer, or Express 4 versions 4.12 or newer Further platforms will be added in the near future. Is technical support available during the trial? Yes, trial is fully supported. When you sign up you will receive a welcome that provides an overview of resources available to get started with IMMUNIO. Please sales@immun.io if you have any additional questions.