Server Protection for Today & Tomorrow

THE OLD ISSUES:
Problem: The Internet exposes networks to the world
Solution: Install a Firewall

Problem: Firewalls don't block all attacks
Solution: Install  an Intrusion Detection System

TODAY'S ISSUES:
Problem: 
- Attacks Need to be stopped, not just detected
- Current Security measures do not prevent Buffer Overflow Exploits
- Undiscovered attacks evade detection by IDS systems
- The majority of attacks come from inside the organization
- Web applications and https sessions are particularly vulnerable
Solution: Entercept provides the vital defense beyond the firewall and IDS

ENTER ENTERCEPT:
Entercept is the leading provider of server-based intrusion prevention solutions for the enterprise, securing operating systems, applications and system resources from known and unknown attacks.

Real Time prevention, not just detection: Entercept prevents malicious activity by intercepting system calls to the operating system and preventing malicious activity.

Prevents Buffer Overflow exploits: Entercept utilizes patented technology to prevent buffer overflow exploits, without needing specific signatures for each type of exploit. This allows Entercept to block undiscovered exploits in additional to those already identified.

Prevents unknown attacks: Entercept uses both specific signatures and behavioral rules that can detect both known and unknown attacks. Entercept prevents web pages from unauthorized alteration without knowledge of the specific attack being deployed.

Protects web servers and web content from unauthorized manipulation: The Entercept Web Server Edition's multiple layers of protection maintain the integrity of web servers. Web content, applications and resources are shielded from unauthorized manipulation without regard to what type of attack is being used by the hacker.

Low personnel requirements to support: Entercept eliminates the need for constant monitoring since it blocks attempted intrusions without human intervention. Installation & deployment are simple, updates can be distributed automatically from a central point.

THE PRODUCTS:
Entercept 2.0 provides protection for all critical e-business servers. Using an extensive intrusion dictionary and an exclusive behavior model, Entercept 2.0 can identify and stop generic and specific intrusions. It gives companies unparalleled protection at the operating system level. Entercept 2.0 is a critical piece in your corporate security strategy, essential for protecting any server exposed to the Internet.  When malicious code makes it through your firewall, Entercept 2.0 is there to stop it from compromising your e-servers. The solution analyzes all requests that are made to your valuable e-servers, and when the request is malicious, Entercept 2.0 reacts in real-time, stopping both known and unknown attacks. Hackers who attempt to damage your servers with Buffer Overflows, Trojan Horse attacks, MDAC attacks and other destructive attacks, will fall short of the mark. Entercept 2.0 stops hackers cold. It prevents these attacks before they can even begin, protecting the enormous amount of valuable corporate data on your e-servers.

Entercept Web Server Edition^TM (WSE) is the ultimate solution for Web server protection.  Entercept WSE analyzes all requests that are made to a Web server and its operating system. When the request is malicious, Entercept WSE reacts in real-time, proactively stopping all attacks.

Entercept Database Edition proactively protects the database server by evaluating requests to the operating system before they are processed. 

HOW ENTERCEPT ADDRESSED NIMDA, CODE RED ETC.
Entercept prevents Directory Traversal attacks, including those used by the Concept / Nimda worm. When the worm attempts to compromise an Entercept-protected Web server, the attack will fail and the server will not be compromised.

The following Entercept rules prevent Concept / Nimda from succeeding:

• IIS Directory Traversal
• IIS Directory Traversal and Code Execution
• IIS Double Hex Encoding Directory Traversal

Entercept also prevents unauthorized changes to Web content, so it prevents the worm from altering Web pages in order to spread itself to other servers.

Entercept is a trademark of Entercept Security Technologies Inc.