Web Application Firewalls
The Website Protector is a Web Application Firewall (WAF) that can help detect and prevent website intrusions. A WAF can do this even when your website is on shared hosting, and your organization doesn’t control the entire web server. Website Protector is like a smaller version of a host-based intrusion detection and prevention system that can be used on a single website.
There are four commonly cited weaknesses to Web Application Firewalls.
One of the typical limitations of an ordinary Web Application Firewall is that they are application-specific. There are, for example, WordPress plugins that only detect WordPress vulnerabilities. Do they work well with other plugins or custom code? Do they need constant updating? Do they only work well with certain versions?
Another limitation is that Web Application Firewalls are often quickly outdated. They usually rely on known exploit patterns and cybersecurity attack signatures. While these help, they are effectively useless against vulnerabilities that are newly discovered against the application.
A further significant limitation is that a WAF is usually installed on the same system that they are monitoring, and so will be exploited once the system on which they are installed has been exploited.
A false positive occurs whenever a detection system alerts you that there is a problem where there isn’t one. False positives are one of the ongoing limitations of ordinary website firewall products. They alert so frequently for non-issues that website managers stop taking them seriously. They suffer from the same fate as the boy who cried wolf too many times.
Website Protector does not suffer from any of these ordinary WAF limitations.
Website Protector is not application-specific. You can install it on any website using the web's most common programming languages: PHP and Python
While The Website Protector does use known attack signatures, it also uses predictive machine learning techniques to spot abnormal activity on your website that does not yet match any known vulnerability or attack signature. The Website Protector constructs risk profiles for every one of your web visitors, evaluating such factors as geolocation, time of day, and network reputation.
As an outsourced cybersecurity service, The Website Protector does need updating or maintenance. Further, Website Protector is cloud-based and separate from your website, providing real-time monitoring and prevention for you without being exposed to the same vulnerabilities your website faces.
No false alarms
One of the reasons why Website Protector has a low false positive rate is that unlike other website firewall products, it removes and rewrites detected malicious user input before it is used by your website. Most WAF products simply delete detected malicious activity or send out an error message. Website Protector strips out only the dangerous part while allowing the rest to flow through. In practice, this means that benign user input that would ordinarily cause the system to stop functioning in a false positive scenario can continue while still preventing malicious user activity from harming the system. This is an important operational advantage to ordinary WAF products in practice.