ServerFiles.com is a server software & hardware directory for Network administrators & IT professionals, listing networking & server software for Windows 2003, Windows 2000, NT and Linux; and now also listing networking hardware solutions focused on server based computing.
ThreatSentry is a Host Intrusion Prevention software application (HIPS), designed to protect Windows Web servers running Microsoft Internet Information Services (IIS). ThreatSentry is comprised of two components. The first is an Application Firewall, pre-configured with a knowledgebase of known exploitive techniques and attack characteristics. Administrators can establish explicit guidelines for permissible and/or denied activity. The application firewall is coupled with a neural-based Behavioral Engine that organizes server requests into a multi-dimensional baseline of typical system activity. Each server connection is scrutinized by the rule-set configured in the application firewall and the behavioral baseline to identify and take action against any activity falling outside trusted parameters. ThreatSentry’s intrusion prevention capabilities progressively improve as the baseline evolves automatically or based on input from the system administrator.
IISShield is an IIS ISAPI Filter preventing any known and unknown attacks from disrupting IIS. The preventive approach of IISShield is an added value preventing IIS from even trying to interpret requests trying to break-in. With a detailed logging engine, IISShield helps IIS administrators to know in advance and protect IIS from known or unknown HTTP attacks that flow over the Internet. The configuration provides the ability to precisely decide over what is accepted and what is not regarding the HTTP Layer. RFC Compliance is just one of the core features of IISShield offering an assurance of quality of service to the IIS Administrator.
ISAPI Filters offer a way of managing (changing, altering, customizing) some of the core parts of IIS. Customizing the "Server" response header is one of those tasks. While altering the "Server" response header may be useful at a security prespective by disguising the web server banner (security by obscurity), keep in mind that there are much more powerfull ways of detecting a server type using tools like nmap. IISBanner is an IIS ISAPI Filter that can be used to specify a replacement for IIS's built in "Server" header, or even to instruct IIS to not use the "Server" response header altogether. The configuration is made by an .ini file, namely "IISBanner.ini". This configuration file must reside in the same directory of IISBanner.dll.
Notes: Instalation of this ISAPI Filter must be done at the WebServer level; The ISAPI runs at low priority; IIS's performance is NOT affected by this ISAPI Filter. Any stress test will reveal that the number of HTTP requests remains unaffected with or without IISBanner;
Copernic Enterprise Search is an enterprise search engine that allows employees to search for documents within their company. It enables searching through Word, Excel, PowerPoint, PDF files, e-mail, etc. and delivers highly accurate search results in a flash. Search by keyword, phrase, date, author, title, size and more. Index documents that are available on your file servers, Intranet and external websites and your Exchange Public Folders. The Copernic Enterprise Search 5,000-document license is free, fully functional, no expiration.
An often overlooked security issue is the exposure of a Web server’s identity via its HTTP header. By anonymizing your Web server's identity, you can trick hackers to attempt mistargeted exploits, making it easier for intrusion detection systems and firewalls to accomplish their missions and foil the hack. ServerMask obscures the identity of a Windows Web server by removing the most obvious signs that you are running IIS. ServerMask removes or modifies unnecessary response data. The software provides control over what Server header data, if any, is visible in HTTP responses. Session cookie masking permits the customization of any type of session cookie (including the Windows-specific ASP session cookie). ServerMask can emulate the Apache Web server’s HTTP header order and disable Microsoft WebDav with one click to suppress its multiple identifiable headers. It also removes the Windows-specific Public header from HTTP responses, a relic of HTTP 1.0 seldom used today, and converts the Windows SMTP banner to any message. When combined with these security recommendations and other server tools like PageXchanger and CustomError, ServerMask provides the anonymization component of your total security strategy.
IIS Lockdown Wizard version 2.1 works by turning off unnecessary features, thus reducing attack surface available to attackers. To provide multiple layers of protection against attackers, URLscan, with customized templates for each supported server role, is integrated into the IIS Lockdown Wizard. To keep the server completely secure, however, all hotfixes are required before and after applying IIS Lockdown Wizard to stay protected against known security vulnerabilities.
File Service Extension enables you have control over the following items related to your web server:server software signature, directory browsing page, visitors's IP address, hosted file resources, realtime connections,traffic and requests linked from other sites.
File Service Extension Provides you with: Anti-leech, Concurrent connections limit, Concurrent connections from same IP limit, Traffic per day limit, Open hours control, Max session time limit, Real-time connections tracing, Real-time connections handling, Easy IP deny/allow setting, Custom server software signature, Custom directory browsing page
Protect IIS is designed to monitor inbound traffic on Web servers through a filter in order to guard against malicious attacks such as viruses and worms. Protect IIS is designed to secure Microsoft Internet Information Services (IIS) Web servers, which are the standard that many companies rely on to run their Web sites. Protect IIS is an out-of-the-box solution, which sets up quickly and affords instant protection for Web servers.
Protect IIS reduces susceptibility to attacks by shielding Web sites and Web applications from intrusion. The InstantAlerts(tm) Notification feature sends an e-mail notification when Protect IIS discovers an attack and the signature update service protects servers from newly discovered vulnerabilities. Protect IIS reduces the amount of administrative resources necessary to ensure secure Web operations and site availability.
Microsoft has released an updated version of the URLScan security tool, 2.5, with additional functionality that provides greater security and functionality than previous versions of the tool. URLScan 2.5 is an update to URLScan 1.0 and URLScan 2.0.
Important Urlscan stops many types of attacks but is not a substitute for staying up to date on patches. Microsoft strongly recommends that customers apply security patches to keep the server secure and fix known security vulnerabilities.
Admin Report Kit for IIS (ARKIIS) is a reporting tool for Microsoft IIS Administrators. ARKIIS presents IIS configuration information from the IIS MetaBase in the form of Trees, Tables and Views. All categories of information reported by ARKIIS are available across web servers and websites. This means that information may be viewed and reported for several web servers in the enterprise simultaneously from a single server machine. ARKIIS assists in monitoring and tracking IIS information in a certain way that is most suited for efficient administration and reporting requirements, especially web servers that have a large number of web sites, virtual directories and associated configuration settings.
- Windows: All products that can run on Windows
- Linux: All Products that can run on Linux
- Either: All products
- Both: Products that can run on both Windows and Linux
Up one level
