Instantly visualise your network
security policy

Firewall Analyser automatically pulls information from a wide range of devices to generate an interactive network topology map.

Mitigate risk with baseline
configuration compliance

Firewall Analyser minimises the risk that devices will be exploited, by continuously monitoring them against custom-defined or recommended device configuration baselines which are provided for each product.

Easily define and enforce
network segmentation

With Firewall Analyser, you can quickly confirm that your existing network security policy does not violate your network segmentation strategy or block critical business services, and meets compliance requirements.

Simplify DDI admin

A DDI management solution will make administration of your network’s names and numbers – planning IP address usage, running DNS and DHCP services – much easier.

Increase control at all levels

With all information held in a single centralised system, DNSBOX helps increase control over the data, how workloads are shared and the resulting quality of your DDI services.

Protect your DDI services

DDI services are top security targets. An integrated DDI solution built on a robust appliance platform, DNSBOX protects them from high-impact security threats and service failures, and greatly reduces the risks.

CryptoFlow Creator Software

Certes Networks’ award-winning CryptoFlow software provides key, policy and device management for all Certes Network encryptors. It safeguards application traffic, enabling secure connectivity over any infrastructure without compromising network device or application performance.

Patented Layer 4 stealth encryption

Certes Networks’ patented Layer 4 stealth encryption enables organisations to extend trust across the WAN with network encryption that is decoupled from the infrastructure.

Puts the CISO back in control of
enterprise security

Extending trust across the WAN using patented Layer 4 stealth encryption delivers control back to the CISO. Trust is decoupled from perimeter and infrastructure. This facilitates business agility in today’s digital world, whilst enabling and maintaining regulatory compliance.

Discover everything

Easy NAC automatically detects, profiles and governs device access with extensive software and cloud orchestration modules.

Take control

Safeguard assets by knowing and controlling your networks with NAC. With Easy NAC, deploying NAC is no longer slow, difficult or expensive.

Easily scale

Extend NAC to remote sites with inexpensive vLinks. With no on-site configuration or network changes, even non-IT personnel can install vLinks to any site in minutes.

Block various patterns of web attack

• OWASP Top 10
• XSS / Injection Attack Block
• HTTP based DDOS Attack Block
• Application Exploits Block
• SSL Termination
• Latest Web Vulnerability Attack Block via Automated Updated Function

Intuitive and user-friendly interface
based on web

• Various log search and easy management
• Interworking with integrated log via SNMP and SIEM
• Provides statistics and reporting for enhanced visibility

Protect from Personal Information
Leakage (Masking)

MONITORAPP Web Application Firewall blocks the uploading and/or downloading of files which contain personal information.

Scan thousands of web applications
in hours, not days

With Netsparker’s exclusive pre-scan automation and Proof-Based Scanning technology, you can easily scale up and scan thousands of web applications. Within a matter of hours, you can detect vulnerabilities and have the informed and accurate results developers need to start fixing issues.

Scan custom, legacy and off-the-shelf
web applications

Netsparker can crawl and scan any web application regardless of the technology it is built with. It can scan HTML5, Web 2.0 Applications, Single Page Applications (SPA) and any other type of application that relies heavily on client-side technology.

Actionable insights and results

Netsparker’s Proof-Based Scanning technology helps automatically verify any identified vulnerabilities so your team does not have to. It also automatically checks developer fixes, so most of the post scan and vulnerability triage processes are automated.

Detailed configuration reporting

Scriptable for 24/7 vulnerability alerts, 365 days a year, Nipper Studio’s detailed configuration reporting gives quick, clear views of device settings. So companies can discover misconfigured systems and firewall, switch and router vulnerabilities – effortlessly.

Supports security compliance goals

Nipper Studio audits against industry standards such as CIS, STIG and NIST benchmarks. Its “best practice” security audits also include industry checks, rating systems and mitigation advice. So you can meet your security targets faster and become compliant.

Easy to implement and use

An agentless tool, Nipper Studio integrates easily with existing systems. There is no additional software or systems to install or maintain. Automated configuration auditing means workloads can be customised, scheduled and scripted to work on multiple platforms.

Block harmful traffic through virtual
protection domain

In addition to a strong Anti-DDoS function, it is easy to set up and operate through through IPS policy setting Wizar.

UTM that maintains high performance

It uses a platform that can resolve the latest security issue, such as IPv6 support and IPTV security, and is able to expand and operate a variety of security functions.

Forensics based information and analysis

SECUI MF2 provides forensics based information for different analysis of an attack:

• By maximum log download of 3,000,000 per second
• By secure audit log according to the DDoS attack
• By strong log analysis engine

Easy deployment, easy management,
easy monitoring 

With Sophos Web Appliance, it’s easy to get up and running quickly. We’ve also optimised daily workflow routines, making them intuitive and also streamlined. Best of all, your appliance is closely monitored around the clock. So if there’s a problem, we’ll be on top of it before you even need to call.

Protection everywhere

Sophos Web Appliance works seamlessly with your Sophos Secured Windows Endpoints to provide complete web protection for off-site employees – protecting every user, on every device, everywhere they go.

Lightning performance

Sophos Web Appliance delivers the ultimate in performance, so your users and mission-critical web applications work lag-free, with no noticeable latency.

Stop unknown threats

XG Firewall offers the best protection against the latest advanced threats like ransomware, cryptomining, bots, worms, hacks, breaches and APTs.

Powered by deep learning

Developed by data scientists at SophosLabs to deliver the industry’s best detection rates without using signatures, XG Firewall catches previously unseen malware lurking in suspicious payloads, quickly and effectively.

Intercept exploits

XG Firewall integrates some of the best technology from our leading Intercept X next-gen endpoint protection like exploit prevention and CryptoGuard Protection to identify malware exploits and ransomware before it gets on your network.

Detecting and Blocking Malware Infiltration through Network
Traffic

ZombieZERO Network APT (formerly known as Inspector N) collects valid data from incoming network traffic, including files, URLs, and protocols like HTTP, HTTPS, SMTP, POP, IMAP, etc. Its purpose is to detect, analyze, and block new and variant malicious codes, specifically Advanced Persistent Threat (APT) attacks.

Zero-Day Vulnerability Mitigation

ZombieZERO Network APT employs a comprehensive approach to detection and analysis, utilizing various techniques for robust protection. These techniques include Blacklist/Whitelist filtering, integration with Bitdefender antivirus functionality, static analysis using Yara Rules, dynamic analysis through a customized sandbox environment for behavioral analysis, and reputation analysis leveraging Virustotal.

Continuous Threat Detection based on MITRE ATT&CK framework
classification

ZombieZERO Network APT provides the flowchart of the APT attack process by categorizing malicious codes based on Indicators of Compromise (IOCs) aligned with the MITRE ATT&CK framework. This capability enables the identification of attack techniques and tactics employed by the malicious code, providing a comprehensive understanding of the utilized attack methods.

Virtual Machine Bypass Prevention

ZombieZERO Network APT detects and analyzes dynamic behaviors by disguising the unique information of the virtual machine. This includes changing the CPUID of the sandbox’s virtual machine to match that of the real machine. By tricking malicious code into perceiving the virtual environment as the real machine, it becomes easier to detect and analyze dynamic behaviors.