Every day, nearly 9 million websites on the Internet are subject to security attacks (data source: Rising.com.cn), and the vast majority of these websites are built by renting virtual hosts.
You do not have the right to install special protection software and perform necessary security configurations on the server. Even if the site is run on an independent server, most anti-virus software on the market currently targets malicious
The script's detection and killing efforts are far from enough. It is mainly aimed at the security protection of the server. A slight code deformation can easily bypass the detection and killing.
Guardian Genius (Guardian Genius) came into being. This program is written in script code like the website program. It is developed based on script language ASP and PHP and can run
Runs under Windows IIS 6/7/7.5 ASP/PHP (Linux Apache2+PHP5 support will be developed as soon as possible depending on the situation), no need to install any applications on the server side
. In other words, as long as your server can run the website program, it can run this program.
Many of the industry's first features and special pertinence of this program make it comprehensively surpass the capabilities and performance of various security protection products on the current network.
Multiple script support: The program comes with ASP/PHP dual script language support function. It automatically detects the script types supported by the website during runtime and automatically enables them without user selection.
The ASP/PHP version is downloaded separately. If the server supports both ASP/PHP languages, the program will provide ASP/PHP selection on the login interface to facilitate switching; at the same time, regardless of switching
Regardless of the language, the same database is used.
Active defense: This function is brought to the forefront of development as the key function of this software! After the aforementioned functions protect the website program from Trojans in a non-real-time state,
While there are threats from malicious code programs such as gates, this active defense function will protect your site security at all times while your website is running. Active defense technology uses regular expressions
The most accurate matching, looking for various threats contained in user-submitted information, and because it uses regular expression logical matching, the probability of false positives is almost zero, and the matching is accurate.
The accuracy is as high as 99%. It has been 8 months since this function was developed in March 2009. The core code of this function has been modified and improved three times, and it has been ensured that the current national
Any public version or internal website vulnerability scanner at home and abroad can effectively intercept. It also has a very high interception rate for manual injection and injected code deformation to bypass IDS.
;At the same time, no false positives will be generated for various data submissions during normal use of the program. This is the most effective way to intercept all commercial and free SQL injection interception codes (programs) on the Internet today.
Big difference. In terms of execution efficiency, the test found that the detection of data submitted on a general page only takes about 0.05-0.1 seconds, which can be ignored.
Variations cannot be bypassed: We know that some key codes in some normal website programs will be falsely reported by anti-virus software, and the website program developers can only deal with them slightly.
Some deformations of key codes can easily render anti-virus software "speechless". Similarly, slightly deformed Trojan programs can also render anti-virus software "speechless".
. This program uses regular expressions to perform special detection on key code deformations in the code. No matter how you deform it, you can still detect threats and will never be "speechless". That's all
First, this program has completely surpassed other anti-virus software in the field of script security.
Scanning method: The program can index the script code of the current website according to user settings, and then scan the index file. During the scanning process, it will match its own Trojan behind
Compare the signature library of the gate program. The signature library of the program itself can be connected to the central server for upgrade and synchronization at any time to ensure that the latest attacks on the network can be defended in a timely manner; at the same time, it is attached
The intelligent scanning function does not rely on signature libraries but uses regular universal matching to find suspicious codes and threats. When performing bulk scans, approximately one scan per second
Any number of files can be scanned one by one. Scanning can be paused during the scanning process and resumed at any time.
Queue mechanism: Due to the particularity of the script language, it is impossible to scan a large number of files one by one and feedback the scan results like an application (.exe program).
Therefore, any web security scanner currently on the network will extremely occupy server resources when scanning a large number of files, and it is easy to cause the IIS process during execution.
Suspended death affects the operation of the website. In response to this phenomenon, this program is the first to create a buffered scanning mechanism, using Ajax technology to scan files in a queue. The scanning process will be performed file by file.
, and the scanning results will be reported immediately after each file is scanned, and the scanning progress and current status will be visually displayed on the progress bar. After actual testing, the program performs the scanning process
For an Inter Core dual-core 2.2Ghz CPU + 4G memory server, the CPU pressure caused by it is stable at about 1%, and the memory usage is negligible.
Online update: This function that can only appear on conventional security products is also brought to the Web program level for the first time by this program; for security protection products, the synchronization network is updated from time to time
The latest vulnerability information on the Internet is the key. A protection product that is not updated will be directly eliminated in the ebb and flow battle between attack and defense in the security field. The purpose of this program is
The online update function will automatically connect to the central server to download and update the latest signature database to ensure that your website is always under the latest protection.
Database file retrieval: Due to the particularity of the active defense function, the original database connection file of the website needs to be modified, which is very inconvenient for ordinary website owners.
Therefore, the database file retrieval function is specially developed. When you are not sure about the location of the database file, you can arbitrarily fill in the location of a script file related to the database, and the program will automatically
Find the exact location of the database connection file by "following the clues" and automatically modify the database connection file to proactively defend against the core engine's hooking work, some of which do not need to be used.
household intervention.
Online support: As we have been at the forefront of product development and maintenance in the IT industry for many years, we are well aware of the value of user feedback and the focus when users encounter problems that urgently need to be solved.
If you are in a hurry, we hereby develop an online support function. You do not need to log in to the website, forum, send an email, etc., you can submit your feedback information through the "Support Center" in this program.
Send it to the official site support center immediately for resolution.
Guardian Genius program official website: http://www.guardiangenius.com
Expand