SEEKING WORK | Europe | Remote Only | Server security
I offer practical and affordable cybersecurity services, namely - intrusion detection and prevention system, which will protect your Linux based server from security threats, by inspecting and blocking malicious traffic coming from the internet.
This is how it works:
Install, configure and remotely maintain open source Suricata or Snort IDS software and apply needed traffic inspection rules, which suites your server environment the best.
Then all the outgoing/incoming traffic on your server is decrypted and inspected with so called IDS signatures/rules of common attacks and other malicious activity patterns, and if it matches any - request gets blocked, before it ever reached your webserver process.
With this solution it doesn't even matter what kind of backend solution is running on the server, traffic
is inspected and blocked if needed, before it reaches the end process – apache, nginx, tomcat or whatever it might be. This also means traffic doesn't have to be redirected via 3rd party like cloudflare.
This way we can thwart common internet malicious activity - vulnerability exploits, scanners, botnets, login bruteforcing, SQL injections. So you can basically host a 10 years old WordPress installation and all exploit attempts will be blocked.
I can also write custom IDS rules for your specific application, to block malicious activity/attacks against it. Tell my what kind of issues your server/product is dealing with and we can discuss if this IDS solution can possibly help the cause. We also use shared threat intel, so if a new botnet is out there and already attacking servers - your server will know to block those IP addresses.
All the work is already automated, onboarding new server for full protection takes about 5 minutes. Then actual work is applying needed rules for particular environment and weeding out any false positive signature matches.
I offer practical and affordable cybersecurity services, namely - intrusion detection and prevention system, which will protect your Linux based server from security threats, by inspecting and blocking malicious traffic coming from the internet.
This is how it works:
Install, configure and remotely maintain open source Suricata or Snort IDS software and apply needed traffic inspection rules, which suites your server environment the best. Then all the outgoing/incoming traffic on your server is decrypted and inspected with so called IDS signatures/rules of common attacks and other malicious activity patterns, and if it matches any - request gets blocked, before it ever reached your webserver process.
With this solution it doesn't even matter what kind of backend solution is running on the server, traffic is inspected and blocked if needed, before it reaches the end process – apache, nginx, tomcat or whatever it might be. This also means traffic doesn't have to be redirected via 3rd party like cloudflare. This way we can thwart common internet malicious activity - vulnerability exploits, scanners, botnets, login bruteforcing, SQL injections. So you can basically host a 10 years old WordPress installation and all exploit attempts will be blocked.
I can also write custom IDS rules for your specific application, to block malicious activity/attacks against it. Tell my what kind of issues your server/product is dealing with and we can discuss if this IDS solution can possibly help the cause. We also use shared threat intel, so if a new botnet is out there and already attacking servers - your server will know to block those IP addresses.
All the work is already automated, onboarding new server for full protection takes about 5 minutes. Then actual work is applying needed rules for particular environment and weeding out any false positive signature matches.
Contact: [email protected]