Atomicorp's Realtime Gotroot ModSecurity Rules

  

The Internets Original, Most Trusted, and Most Comprehensive Source of Web Application Firewall Rules

ModSecurity is an apache web server module that allows you to build a web application firewall (WAF) and to protect your web applications. You can use ModSecurity in either an integrated manner, to protect the web server and its applications, or as a proxy for other web servers - allowing you to build your own WAF at a fraction of the cost of traditional solutions. This module is extremely powerful, but like a word processor its useless without content. You need good rules - rules that stop bad things and allow good things.

                    Web Server         
modsecurity 2
                                                     ModSecurity

Atomicorp has been writing ModSecurity rules longer than anyone else and even long before OWASP existed. Our rules are used by more people than all other rule sets combined! And for good reason, our rules are written so that you don't have to be a security expert, unlike other ModSecurity products. Atomicorp ModSecurity rules work right out of the box without any tuning and without interference to your applications and users.


 Trusted by more users than all other commercial ModSecurity rule sets combined
 Developed and maintained by the industries most experienced ModSecurity experts
 Optimized for speed, memory usage, high detection rate, and low false positives
 Updated on a immediate and continuous basis
 Proprietary technology minimizes false positives/negatives and update time
 Thoroughly tested with thousands of the most popular web applications
 Over 25,000 rules and counting!

The Atomicorp/Gotroot Realtime WAF Rules Provide an Immediate Solution for the Following Challenges:

Site Defacement and Comment Spam XML Attacks Advanced Persistent Threats
Web Application Vulnerabilities SQL Injection, Cross Site Scripting Recursion Attacks
PCI-DSS and other Regulatory Compliance Advanced CSRF Attacks Data Theft and Information Leakage
Rootkits and Malware File and Code Injection And More!

 

Built in Performance Enhancements

The Atomicorp/Gotroot Reatime WAF rules incorporate a number of unique and effective performance enhancements. Among these, the rules detect static content and will bypass the appropriate rules automatically for the static content, without sacrificing security. Our rules also perform parallel searches to speed up analysis and to bypass entire classes of rules when its clear the content does not contain that payload. We also build in numerous exceptions based on known trusted behavior of thousands of applications and libraries to ensure that the rules work right out of the box with no tuning, modification, or disabling of rules required.


Zero Day Attack Protection

Unlike other security products, the Atomicorp Gotroot.com WAF rules do not depend on signatures that require constant updating as they include technology to detect and stop entire classes of attacks such as code injection, protocol violations, SQL injection, cross site scripting and more!


No Limit on Domains!

Unlike other companies that charge large fees by the domain for their ModSecurity rules, you can use our rules on your server with as many domains as you want! That's right, no limit, unlimited domains, no extra fees.

Our company was founded by veterans of the Hosting, Security and Control Panel industries, so we understand how your business works. Domain based licensing just doesn't work. It leaves your systems wide open to attack and it prevents you from selling new domains until you secure yet another expensive license! With Atomicorp, a single license protects your entire server and lets you use the rules with as many domains as you like.


Supported by the Following Platforms among Others:

    linux-logo small      beastie dock icons 11771037 thumb images windows-icon 120px-Icon-sun-solaris os.svg
Linux BSD MacOS Windows Solaris


Tested and Supports Thousands of Web Applications Including:

   Drupal Plesk osCommerce OpenCart MediaWiki
Wordpress CPanel Horde OpenWebMail PhpBB
Joomla OpenCMS OWA Alfresco and More!
Sharepoint Moodle ModX VBulletin


Included with Rules Subscription

Absolutely No Limit on Domains! A single server license can be used with as many domains as you like.
Unlimited Web-Based and Email Rule Support
 Both real-time ModSecurity and Clamav rules
 Development of new rules based on request
 Automatic Rule Updates*

Note: Extended Support Options including phone support and professional services also available.

* Free False Positive and False Negative updates are available for most popular publicly available web applications.  For other applications
   fees apply.  Determination of what applications meet this criteria is at the sole discretion of Atomicorp. 


Ordering Instructions 

The Atomicorp ModSecurity rule set is offered direct from Atomicorp for just $14.95 a month or $99.99 a year. To purchase, please see the Atomicorp Store.

A 30 day, zero risk, no obligation trial is also offered. To order a 30-day trial of our ModSecurity rules, please see our ModSecurity Rules Free Trial page. No credit card information is needed for this option.

To protect your entire server with a full security suite, please see our Atomic Secured Linux (ASL) page. ASL is offered for $29.95 a month, or $199.95 a year. A 30 day free trial is also available for ASL.

For a listing and comparison of Atomicorp product features, please see the Atomicorp Product Comparison page.


Atomicorp/Gotroot.com Rules Protection Summary

   tick  Protocol Violations - Prevents common attacks by detecting protocol manipulation methods used to launch advanced attacks. 
         Prevents resource abuse used to launch Denial of Service attacks.

   tick  Credential Theft - Prevents cookie and other credential theft.

   tick  Spam - The most robust content spam protection system available for web sites, forums, blogs, guestbooks and more. Our rules 
         detect spam, spamming techniques and other methods used by web spammers and prevents them from working. Allowing you to
         run your website worry free from spam.

   tick  Code Injection, including PHP, PERL, ASP, Coldfusion and other technologies - The most complete malicious code
         detection and prevention methods and especially tuned to prevent false positives will thousands of web applications. Prevents RFI
         attacks, obfuscated and cloaked code uploading methods and still allows known trusted applications to work. No tuning required!

   tick  SQL Injection Attacks

   tick  HTTP Response Splitting

   tick  Cross Site Scripting, including Universal PDF Cross Site Scripting

   tick  Malicious Client Detection and Blocking

   tick  Google Hacks

   tick  Just In Time Patching - Our unique JITP system addresses vulnerabilities in applications that can not be patched by patching it for
         you! Our JITP system will plug the holes in your applications so you can take the time needed to test updates, and yet still operate
         your system in a secure and safe manner. JITPs are released daily when new vulnerabilities are discovered so you don't have to worry.

   tick  Data Leakage - Detects unauthorized attempts to access protected files, sensitive information, backup files and other data to
         prevent it from being accessed by malicious parties. Advanced Data Leakage protection is provided in Atomic Secured Linux.

   tick  Recursion Attacks - Prevents attacks from abusing file system bugs to access protected files, or areas of the system.

   tick  Command injection

   tick  Trojan, Backdoor, Spam Tool, Shell and Rootkit blocking - Detects thousands of different kinds of trojans to prevent already
         installed trojans, shells and other malicious applications from even running.

   tick  E-mail Injection

   tick  XML Protection

   tick  Web RPC Protection

   tick  Automatic Detection of Real and Fake Search Engines to block attacks, and to auto-whitelist search engines

   tick  And more!


Additonal Information

Please see the Atomicorp Documentation Wiki for FAQs, installation instructions, compatability information, and all other detailed technical information.