Imperva Cyber Community

Expand all | Collapse all

How can block web platform scan action on Imperva SecurePhere?

  • 1.  How can block web platform scan action on Imperva SecurePhere?

    Posted 18 days ago
    How to block web platform scanning action on Imperva SecurePhere?

    Attackers may try to scan to web servers to determine web platforms (like IIS, or Apache ...) for the next action to exploit vulnerabilities. So how can we block the web platform scan?
    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Cong Le
    ------------------------------


  • 2.  RE: How can block web platform scan action on Imperva SecurePhere?

    Imperva Employee
    Posted 13 days ago
    Hi Cong Le,

    Imperva On-Prem WAF is protecting against all known vulnerability scans including platform scanning vulnerabilities. In addition, every two weeks ADC content is published, which is content provided by the signature detection mechanism based on research done by Imperva data scientists.On top of that, there is Threat Radar Emergency Feed, which allows distributing quickly first response mitigation that answers customers needs until the official ADC content is published. 
    If you would like to share specific type of scan you would like to know more about, please share here and we will provide more information on that.

    ------------------------------
    IraMiga
    ------------------------------



  • 3.  RE: How can block web platform scan action on Imperva SecurePhere?

    Imperva Employee
    Posted 9 days ago
    Edited by Jaired Anderson 9 days ago
    Hi Cong Le,

    There is a builtin policy under Policies > Security named "Automated Vulnerability Scanning", however, please check to make sure an Action has been defined.

    In addition, you will need to click the Apply To tab and select each site for which you like the policy to apply.

    ------------------------------
    Jaired Anderson
    Principal Consultant
    Imperva
    Tulsa OK
    ------------------------------