Threat Detection — Catch defacements, malicious code and other web hacks!
WebOrion® Defacement Monitor provides near real-time alerts in the event of a web defacement.
Our high-fidelity approach in monitoring your website, using our powerful and innovative engines, provides you with a high level of assurance and reliability.
Buy Now on AWS
COMPREHENSIVE & AI-POWERED CAPABILITIES
Configurable engines, with highly advanced AI option, are carefully designed to detect changes due to defacements, malicious code, third-party Javascripts, malware, and more. Unique and Intelligent baseline process automatically differentiates dynamic and static parts of your website, allowing more effective monitoring with minimal false alerts.
Proactive 24×7 Remote Monitoring
Our WM will proactively poll your webpage round the clock to give you greater assurance that your website’s integrity and reputation is intact in front of your customers and partners.
Platform Independent
WM works with various technology stacks. Some of the popular Content Management System (CMS) supported are: WordPress, Joomla, and Drupal.
Near real-time alerts of Unauthorized Changes
Website is the digital front door to your business in this internet era. Using our WM system, you will help to protect your organization against brand damage and reputation loss through early detection of any web defacements.
Our unique features
Our WM service has many advanced and patent pending features to provide the most powerful and granular options for dynamic websites. There is no software or hardware installation and all that is required is the URL of your website and the contact personnel.
Content Analytics
Analyzes HTML source code (e.g. page title, links and frames) to determine if the webpage has been modified when checked against the baseline version.
Automated Integrity Analytics
Auto-analyses the webpages to identify both internal and third party javascripts, images and style sheets to check for changes to filenames and contents.
AI NLP Engine
Intelligent AI NLP Engine learns from >10years of defaced data to classify HTML Text contents for defacements.
Image Analytics
Allows users to select regions of the webpage for pixel analysis using image rendering technique.
Javascript Malware Detection Engine
This engine checks for the presence of well-known card skimming and cryptojacking javascripts which may be invisible to regular website visitors. High severity alerts will be triggered upon detection of any such malicious scripts.
SSL/DNS/Whois Change Monitoring
WM will check regularly for any changes to the SSL, DNS and Whois configurations of the website. Any changes will cause alerts to be sent to the users.
Agentless Solutions
There is no need for installation of any software agent in your web server or hardware appliance in your network. Thus, our WM service can support websites that are hosted anywhere. All that is needed is for the website’s URL to be publicly accessible.
Intelligent Baselining
Our WM service will capture the initial baseline of your website. We use an intelligent baselining module that will automatically poll your URL multiple times to analyze the HTML content and to identify the static and dynamic parts of the URL.
Proactive alerts and notifications
Once a change has been detected, our WM will automatically and immediately send an email and/or SMS alerts to the required website contacts. The email will also contain information on the changes detected for easy troubleshooting and investigation.
High Level Network Architecture of webOrion Monitoring Solution ( Saas )
WebOrion® Defacement Monitor
In our SaaS edition, the subscriber first needs to login to the Self Service Portal to configure your URLs to be monitored. This includes going through an intelligent baselining process to determine the right parameters and thresholds to be set for HREF links, Javascripts, cascading style sheets, iFrames, etc. Alternatively, you can also choose to use our patent pending image analytics engine to graphically select sub-regions of your website to be monitored. Once the baseline is confirmed, the information will be stored in our database for future reference. Our WebOrion® Defacement Monitor (WM) system will then remotely poll the monitored URL at a regular polling interval. Our system simulates a client browser accessing your company’s webpage via HTTP or HTTPS. We will download the HTML contents of your public URL into our WM system for detailed content analysis. Upon detection of any unauthorized changes to the URL, our WM system will automatically send an email or SMS alert to your specified contact personnel.
WebOrion® Defacement Monitor Deployment Models
Our WebOrion® Defacement Monitor is available in multiple deployment options to meet Enterprise customer needs. This includes Enterprise SaaS, On-Premise physical and virtual appliances.
Enterprise SAAS
WebOrion® Cloud (SaaS)
| WebOrion© Defacement Monitor (Per URL) | Lite | Advanced | ||||
| Bronze | Silver | Gold | Bronze | Silver | Gold | |
| Content and Integrity Analytic Engines | ||||||
| Image Analytic Engine | ||||||
| Polling Interval (mins) | 60 mins | 15 mins | 5 mins | 60 mins | 15 mins | 5 mins |
| Notification | Email, SMS and SIEM integration | |||||
| Report | Monthly email/PDF reports | |||||
| Web Portal | Web portal with live dashboard, configuration management and alert statistics | |||||
| Maximum Number of URLs Supported | Scalable to millions of URLs |
| WebOrion© Defacement Monitor (Per Domain) | Micro | Small | Medium | Large |
| Domain Size | Up to 100 URLs | Up to 500 URLs | Up to 1000 URLs | Up to 2000 URLs |
| Committed Monitoring (10 URLs (fixed) every 5 mins) | First 2 URLs | First 10 URLs | First 20 URLs | First 40 URLs |
| Variable Monitoring (50 URLs (Round Robin) every 5 mins) | Batches of 10 URLs | Batches of 50 URLs | Batches of 100 URLs | Batches of 200 URLs |
| Notification | Email, SMS and SIEM integration | |||
| Report | Monthly email/PDF reports | |||
| Web portal | Web portal with live dashboard, configuration management and alert statistics |
Enterprise on-premise appliance
WebOrion® Appliance
| WebOrion© Defacement Monitor | WM-ASV-100 | WM-ASV-500 | WM-ASV-1000 |
| Max. No. of URLs | 500 | 1000 | 2000 |
| Physical Appliance | 1U Rack Server | 2U Rack Server | |
| Virtual Appliance (Private Cloud) | Docker, Microsoft Hyper-V, VMware vSphere | ||
| Virtual Appliance (Public Cloud) |    |