한국어
ENG
日本語
Why EVERSPIN?
Products
News
Resources
Clients Awards Technology Recognition Leadership History
Eversafe for WEBWEB Anti-Hacking Eversafe for MOBILEMOBILE Anti-Hacking FakeFinderAnti-Phishing iDEFENDERidentity theft prevention Penetration Testing
Notice Media Blog
Support Download Center
Contact us
Why EVERSPIN?
Products
News
Resources
Contact us
한국어
ENG
日本語
Clients Awards Technology Recognition Leadership History
Eversafe for WEBWEB Anti-Hacking Eversafe for MOBILEMOBILE Anti-Hacking FakeFinderAnti-Phishing iDEFENDERidentity theft prevention Penetration Testing
Notice Media Blog
Support Download Center
Web security solution that protects with dynamic technology
Hacking defense with dynamic security which implemented MTD
Protect web resources/communications with ever-changing security codes
Simple application without installation on the client's PC
A solution fully prepared for various security issues
Contact Us
Hacker threatens your webpage
Threat
Easy Endpoint Accessibility
Unlike a server that is difficult to access from outside, website is an endpoint where anyone can easily access. With just a right-click of the mouse, hackers find a way to break into the server.
Fixed source code
No matter how complicatedly obfuscated the source code is, it becomes meaningless once it's analyzed, as the source code is static. Hence, hacking is feasible if enough time is given to hackers.
Executing critical security code through a PC program
Executing critical security code in a PC program is OS-dependent, and this approach has a simple and easily bypassable connection between the web and the program.
Sophisticated hacking techniques
Hacking is also advancing. Hackers use sophisticated hacking techniques to quickly and easily identify vulnerabilities in services.
MTD-based Dynamic Security
The goal of modern security, MTD
MTD (Moving Target Defense) is a modern security approach that aims to reduce and change the possible attack range, making the cyber attacker to lose justification and purpose of the attack itself. In the face of dynamically changing security modules, the attacker loses the objective and justification of the attack. MTD is considered a security model that is in line with the fastly advancing era, and the global security industry continues to research effective ways of implementing MTD. Eversafe's self-developed technology, Dynamic Security Technology, is the only anti-hacking technology in Korea that fully captures the core of MTD.
Eversafe for WEB is the next generation of hacking defense solution with ever-changing security codes.
One STATIC security module operates without change.
Given sufficient time, a system that relies on a single security module to protect a service can be bypassed.
VS
Every time, a new DYNAMIC security module is assigned.
Unlike the static security module, Eversafe's security module changes its pattern every time. Therefore, even if a hacker makes great efforts to analyze the system to bypass it, the security module is soon replaced with a new one, requiring the hacker to analyze it all over again.
More Extended Dynamic Elements
Eversafe for WEB applies dynamic technology to most of the main elements applied to web pages and changes its patterns dynamically. This extremely restricts hackers from analyzing webpages. In addition, you can use various features like anti-scraping, request URL protection, HTML protection, and session protection at once.
Server Security
Block scraping
Detects and blocks reckless scraping of external HTTP(S) requests, and the detection code is changed at regular intervals.
Eversafe Only
Block Packet Retransmission
Detects and blocks the function where the same packet is re-requested due to a man-in-the-middle attack of an external HTTP(S) request.
Eversafe Only
Block Bots/Macros
HTTP(S) requests generated from the outside detect and block abnormal browsers/users such as macros and Selenium, and the detecting code is changed at regular intervals.
Eversafe Only
Zero-Day Filter
Detects/blocks known and unknown Zero-Day vulnerabilities of all data transmitted from user to server.
Eversafe Only
Block Proxy
If arbitrary HTTP(S) or proxy tool is used from user to server data transmission, Eversafe for Web detects/blocks the requests.
Eversafe Only
URL Access Control
Allows/blocks access from specific IP bands and specific countries with URL registration.
Eversafe Only
Access Environment Protection
Identifies user information (session, account name) and access environment information (IP band, country, browser) and detects/blocks access in an unidentified environment to protect consumers from potential threats.
Eversafe Only
Communication Security
Protect Requested Data
Encrypts data being transmitted from client to server to protect against man-in-the-middle attacks (hijacking, modification, forgery, etc) and the code related to encryption changes at regular intervals.
Eversafe Only
Protect Requested URL
The URL requested to the server is converted to a different random URL every time, minimizing the information exposed and protecting against man-in-the-middle attacks. The converted URL is newly created for each request.
Eversafe Only
Protect Response Data
A function that encrypts the HTML code designation area(TAG) to protect against crawling that automatically extracts and uses HTML code. Codes related to encryption are changed at regular intervals.
Eversafe Only
Resource Security
HTML Protection
A function that encrypts the HTML code designation area (TAG) and protects it from crawling that automatically extracts and uses HTML code. Codes related to encryption are changed at regular intervals.
Eversafe Only
Resource Protection
Detects/blocks falsification of web resource files used for webpage (css, png, js, ...) to protect against man-in-the-middle attacks.
Eversafe Only
JavaScript Obfuscation
Obfuscates JavaScript source code to prevent hackers from analyzing the source code, and the method of applying obfuscation changes every time.
Eversafe Only
Detect Debugging Tools
Prevents hackers from debugging web resources using developer tools, and the detection code changes periodically.
Eversafe Only
Utilization of Eversafe for WEB
Safe from Log4j with Eversafe Zero Day Filter
In the case of general intrusion detection systems and web firewalls, if an attack code is injected into encrypted data, it is impossible to defend against it. Eversafe for WEB's Zero Day Filter decrypts encrypted data and converts it into plain text data and verifies attack patterns in the Java execution layer. In addition to the known injection attacks such as Log4j, Xss, SQL, etc., it is possible to take preemptive measures to open source-based vulnerabilities that are not yet known.
Protected from malicious scraping
Unauthorized scraping of painstakingly collected data is on the rise. Some fintech companies scrape and use information held by existing financial companies. In this case, if an accident like personal information leakage occurs, it is difficult to determine who is at fault, and the institutional strategy to sanction the act itself is insufficient. Eversafe for WEB protects your valuable data from unauthorized scraping.