Immediately Detect Core Network Intrusions with Adaptive Behavioral Analysis

Data Security News


Russian hackers prove need to avoid sloppy security practices

In what may be the largest compromise of IT security in history, Russian hackers have amassed more than 1.2 billion passwords and user names.

Three best practices for reducing the risk of SQL injection attacks

A recently unsealed indictment against a notorious group of hackers shows just how damaging SQL injection attacks can be.

Ponemon Study Reveals Continuous Monitoring of Database Networks is Key to Reducing Risk of Retailer Type Breaches

57% of Respondents Believed the National Retailer Attacks Involved SQL Injection as a Component of the Attacks

IDS-6300 honored with Grand Trophy at Info Security Products Guide Global Excellence Awards

Receives Prestigious "Grand Global Excellence" Trophy for the Best of the Best in Security Technology

DB Networks Brings Intelligence to SQL Injection Protection

You must identify an attack to prevent it. The DB Networks IDS-6300 aims to provide nearly plug-and-play SQL injection attack monitoring. Frank Ohlhorst conducts a hands-on review of the IDS-6300.

White Papers


How Core IDS immediately identifies database attacks

This white paper examines how effective, real-time, protection of the database infrastructure requires a next generation Core IDS based on adaptive behavioral analysis.

How to Instrument for Advanced Web Application Penetration Testing

Learn how to identify your critical web application SQL statement generation vulnerabilities by instrumenting at the database tier.

SQL Injection Attacks: Detection in a Web Application Environment

Learn how adaptive behavioral analysis is being used to accurately detect advanced SQL injection attacks in real time.

SQL Injection threat


SQL injection attacks are responsible for over 90% of records stolen — don’t be the next victim!

In this video Penetration Tester Joe McCray speaks on his experience with DB Networks Core IDS products. Joe explains how the DB Networks technology was able to identify all of his advanced SQL Injection attacks in real-time after he had successfully bypassed the Web Application Firewall and was actually attacking the database.

Next-Gen Core IDS


Advanced Database Security

DB Networks IDS-6300 intelligent security appliance is a next generation core IDS that uses adaptive behavioral analysis to immediately identify advanced database attacks.

 

        DB Networks IDS-6300




  • Detects advanced highly obfuscated SQL injection attacks
  • Discovers all databases on the segment
  • Identifies SQL generation coding flaws in the application
  • Simplified, transparent, drop-in installation
  • Detects SQL injection attacks against Legacy and 3rd party applications
  • Zero-Day SQL injection attack detection
  • Turn-key security appliance - physical or virtual, your choice

We protect the confidential data residing in your databases from falling into the hands of cybercriminals attacking you with advanced SQL injection techniques.

Protecting the Database Tier

Mature applications are particularly vulnerable to SQL injection attacks. Advanced SQL injection attacks easily bypass signature-based perimeter defenses, and attack the web application to get to your data. The IDS-6300 can detect cyber attacks that penetrate perimeter defenses, including attacks exploiting zero-day vulnerabilities, before any data exfiltration occurs.

Behavioral Analysis
The process begins by automatically learning and modeling the application's proper SQL generation behavior. The Core IDS then uses a suite of procedures to independently test and evaluate each SQL statement against the learned behavioral model. Fuzzy logic is applied to determine the overall threat of each SQL statement. This technique is field proven to be highly accurate.