Backdoor Shell Protection
If you’ve experienced a cyberattack before onboarding Incapsula, attackers likely left behind a backdoor shell that provides them with persistent access to your server.
Backdoor shell protection is a unique solution for detecting such backdoors, rendering them useless.GET QUOTE
How it works
File scanners are commonly used to detect backdoor shells. However, with new obfuscation methods and over a million new malware variants popping up every day, scanning has become as effective as looking for a needle in a haystack.
Incapsula has upgraded the technique, leveraging our edge position to identify and intercept all malicious incoming requests, including communication attempts with backdoors. Unlike the backdoors themselves, these requests cannot be obfuscated and are relatively easy to identify.
Tracking incoming requests lets Incasula accurately locate and quarantine backdoor files, allowing you to safely investigate and remove them at your convenience.
Backdoor shell protection is transparently integrated into Incapsula WAF and is able to disarm a backdoor without deleting it or making any changes to your file system.
PROTECTION FROM THE LATEST THREATS
Our dedicated security team conducts continuous research to identify and flag newly discovered malware variants and families.
Our team is assisted by crowdsourced security that immunizes all customers from new backdoor variants, as soon as they are identified anywhere on our global network.
IncapRules is a custom security rules engine that allows you to easily create your own policies within Incapsula WAF, including new rules for detection of backdoor communication requests.