Fortify Software has extended the use of its Fortify Defender intrusion detection tool to work with Web applications
written in .NET.
This release is helping to meet special requests from .NET-based organizations, such as government agencies trying to protect confidential information, healthcare companies that need to secure private health information, and ecommerce sites trying to comply with the Payment Card Industry (PCI) Data Security Standard.
Fortify Defender offers those types of organizations a way to protect Web applications from the most common and sophisticated hacking techniques. It is most frequently used when companies either don't have time to conduct an extensive source code analysis or don't have access to the source code.
Fortify Defender's technology requires minimal overhead and can be applied to any J2EE or .NET custom Web application, even those where source code is unavailable. It protects against both known and unknown attacks by using multiple detection algorithms, including rule-, behavioral- and anomaly-based techniques to identify important and potentially harmful security events.
In addition to protecting Web applications, Fortify Defender provides detailed attack forensics. Organizations can monitor in real-time how they are getting attacked, who is attacking them and specifically what part of their application is getting attacked.
For more information about Fortify Defender and to download a free product trial, visit Fortify's web site.