Threat Detection — Catch defacements, malicious Javascripts and other web security hacks!
With over 50,000 websites being hacked on a daily basis, protecting your website from hacks and defacements is even more important in today’s world to maintain your customers’ trust in your application.
WebOrion® Monitor provides an instantaneous, agentless and continuous way to monitor all your websites for many hacks including defacements (visual and non-visual), tampering of HTTP headers, Javascripts, TLS certificates and DNS/Whois changes.
Using our powerful and innovative engines, together with the capability to provide real-time alerts, our high-fidelity approach can provide you with a high level of assurance and reliability.
Book a Demo
COMPREHENSIVE & AI-POWERED CAPABILITIES
Configurable engines, with highly advanced AI option, are carefully designed to detect changes due to defacements, malicious code, third-party Javascripts, malware, and more. Unique and Intelligent baseline process automatically differentiates dynamic and static parts of your website, allowing more effective monitoring with minimal false alerts.
Proactive 24×7 Remote Monitoring
Our Monitor will proactively poll your webpage round the clock to give you greater assurance that your website’s confidentiality, integrity and reputation is intact in front of your customers and partners.
Platform Independent
Monitor works well with both on-premise or cloud hosted websites and web applications. We also support any web technology stacks including popular Content Management System (CMS) such as WordPress, Joomla, and Drupal.
Automated with Integrated Response
Our Monitor can be integrated with our Restorer to provide complete incident response in the unfortunate event of a hack.
Our unique features
Our Monitor has many advanced and patent pending features to provide the most powerful and granular options for websites and web applications. There is no software or hardware installation and all that is required is the URL of your website and the contact personnel.
Content Analytics
Analyzes HTML source code (e.g. page title, links and frames) to determine if the webpage has been modified when checked against the baseline version.
Automated Integrity Analytics
Auto-analyses the webpages to identify first and third party files such as images and cascading style sheets(CSS) to check for changes to filenames and contents. The unique linking and checking of third party files are typically not covered by locally installed file integrity solutions.
Artificial Intelligence Engine
Our Unique AI Engine runs advanced Natural Language Processing (NLP) models that were trained from >10years of defaced data to classify HTML Text contents for defacements.
Image Analytics
Besides code and file checks, our Monitor also renders the webpage as an image to do advanced pixel analysis.
Javascript Malware Detection Engine
98% of websites used javascripts today. Our Malware Engine checks for the presence of well-known card skimming and cryptojacking javascripts which may be invisible to regular website visitors. High severity alerts will be triggered upon detection of any such malicious scripts.
SSL/DNS/Whois Change Monitoring
Monitor will check regularly for any changes to the DNS and Whois configurations of the website. Any changes will cause alerts to be sent to the users.
Payment Page Monitoring
Our monitor can be programmed to monitor important payment pages to prevent card skimming attacks (eg. Magecart) or other forms of payment hijacking.
HTTP Header Monitoring
Our Monitor will check regularly for any change or tampering of the HTTP Headers. This includes checking for Content Security Policy (CSP), HTTP Strict Transport Security (HSTS) on the monitored websites.
Web Software Supply Chain
Our Monitor can also provide the continuous monitoring of the script inventory from inline, first, second, third and fourth party scripts that will affect the look and functionality of the website or web application.
High Level Network Architecture of webOrion Monitoring Solution ( Saas )
Flexible Deployment Models
Our WebOrion® Monitor is available in multiple deployment options to meet Mid-market and Enterprise customer needs. This includes cloud based SaaS subscriptions, on-premise physical appliances or virtual appliances that can be deployed on VMWare, dockers or cloud AMIs.
Enterprise SAAS
WebOrion® Cloud (SaaS)
| WebOrion© Defacement Monitor (Per URL) | Lite | Advanced | ||||
| Bronze | Silver | Gold | Bronze | Silver | Gold | |
| Content and Integrity Analytic Engines | ||||||
| Image Analytic Engine | ||||||
| Polling Interval (mins) | 60 mins | 15 mins | 5 mins | 60 mins | 15 mins | 5 mins |
| Notification | Email, SMS and SIEM integration | |||||
| Report | Monthly email/PDF reports | |||||
| Web Portal | Web portal with live dashboard, configuration management and alert statistics | |||||
| Maximum Number of URLs Supported | Scalable to millions of URLs |
| WebOrion© Defacement Monitor (Per Domain) | Micro | Small | Medium | Large |
| Domain Size | Up to 100 URLs | Up to 500 URLs | Up to 1000 URLs | Up to 2000 URLs |
| Committed Monitoring (10 URLs (fixed) every 5 mins) | First 2 URLs | First 10 URLs | First 20 URLs | First 40 URLs |
| Variable Monitoring (50 URLs (Round Robin) every 5 mins) | Batches of 10 URLs | Batches of 50 URLs | Batches of 100 URLs | Batches of 200 URLs |
| Notification | Email, SMS and SIEM integration | |||
| Report | Monthly email/PDF reports | |||
| Web portal | Web portal with live dashboard, configuration management and alert statistics |
Enterprise on-premise appliance
WebOrion® Appliance
| WebOrion© Defacement Monitor | WM-ASV-100 | WM-ASV-500 | WM-ASV-1000 |
| Max. No. of URLs | 500 | 1000 | 2000 |
| Physical Appliance | 1U Rack Server | 2U Rack Server | |
| Virtual Appliance (Private Cloud) | Docker, Microsoft Hyper-V, VMware vSphere | ||
| Virtual Appliance (Public Cloud) |    |