Site Threats Are Everywhere - What's a Website Owner To Do?

Yes, there are a lot of website threats out there.  SQL Injection attacks, Google SEO poisoning, hacked Wordpress installs - the list goes on and on.

With Site Security Monitor, however, you get full site protection from both general web vulnerabilities AND malware.  The combination is unbeatable, and represents your best value for your website security needs and budget.

Have a browse through our site.  Review our customer testimonials, sign-up and try our services with a free, no-obligation scan.  If you're satisfied, we invite you to become a regular SMM scanning customer. When you have  peace of mind with your site - your most important business data and assets -  you will sleep better for it! 

Only Your Site Address is Accessed

Once you verify website ownership, we run the scans and then notify you when the report is ready. 

The Issues of Web Security

As many as 70% of sites online have security issues that often lead to the theft of important data such as credit card information and confidential customer files.

These 'invisible bad guys' are concentrating their efforts on web-based applications - the same shopping carts, forms, and login pages that you have on your site today. Many of these web applications provide easy access to your very valuable customer data!

Today, firewalls, SSL and locked-down servers are futile against sophisticated hackers since almost all of the flaws are found within the application itself!

These web application attacks go straight through your firewall, through your standard security settings on standard ports, right into the heart of your web application. We've discovered that many 'off the shelf' products are full of vulnerabilities. Additionally, your own custom web applications may also have similar issues due to web developers who focus on functionality over security.

The Most Advanced Site Security Scanning at Your Fingertips

1. Javascript analyzer allows for complete security testing of AJAX and Web 2.0 applications 

2. The industry's most complete SQL injection and cross site scripting testing system
• SQL injection is a hacking technique which modifies SQL commands in order to gain access to data in the database
• Cross site scripting attacks allow a hacker to execute a malicious script on your visitor's browse
  
  
3. Extensive reporting facilities - Yes, we tell you how to fix the problem! 
   
   
4. Our site crawler detects web server type and application language - making the scan deeper and more relevant
   
   
5. Sites with Fash content, SOAP and AJAX - no problem, we check those too!
   
   
6. Of course, the standard port scans for more peace of mind 
    
7. We also include Malware Status Scans as part of all reporting!

Of course, detection of these sophisticated issues requires a complex, reliable and pattern-based scanner. Much like anti-virus scanning technologies, web vulnerability scanning is not the number of attacks you can throw at a site - it's what you do after the culprits have been found.

Site Security Monitor uses a state of the art vulnerability detection engine which quickly finds vulnerabilities with a low number of false positives - and then digs deeper when it finds something interesting. Other basic scan parameters also include: CRLF injection, code execution, directory traversal, file inclusion and authentication vulnerabilities.

Additional Scans, Additional Value

While scanning your website, we also scan the web server for basic open ports and perform complex network alert checks against network services running on the open ports. These tests include: DNS cache poisoning and recursion tests, SNMP weak community strings, weak SSH & SSL ciphers and others.

Special Bonus - Google Hacking Database

Our little something extra is the Google Hacking Database (GHDB). The GHDB is an online database of queries used by hackers to identify sensitive data on your website such as basic known broken command calls, server access logs with network sensitive information, and so on.

As part of our basic scanning package, we utilize the ongoing updated Google Hacking Database queries and attempt those parameters and attach vectors against the content of your website. By testing the 'latest and greatest' security exploits against your website, you get the confidence you need to know your site is fully protected against all search engine hacker nastiness.