Webapp.secure is a web application firewall that can be deployed on any web server. it is available for Windows 2000/XP, Linux. FreeBSD, Solaris and QNX. It uses MMC compliant graphical user interface for configuring, staring/stopping and other related activities. Multiple instances of this application can be used to protect multiple IP-based virtual websites on the same server. Each instance runs as a separate service with its own configuration and its properties are logically grouped for easy access. A user can define policies for HTML content like usage of wildcard characters for entry points and in certain cases the entry point is available through an encrypted connection only. Similarly policies for non-HTML content can also be defined such as providing access to images.

Name: Webapp.secure.jpg Views: 29 Size: 60.1 KB

This application provides real-time attack notifications. The user has the option to choose from three alert mechanisms i.e. email, HTTP and network notification. Most other configurations such as the maximum number of simultaneous connections, keep alive-timeout, hide server identity, etc can be done. One important feature is the application manipulation protection which includes checks like HTML form field validation. cookie validation and others. It also informs about the nature of attacks, whether they are form field tampering. buffer overload, cookie tampering or others.