QualysGuard Malware Detection                      ®Service – Enterprise Edition                     Marek Skalicky, CISM,...
Why MDS?           Thousands of sites are infected                       daily           “Malvertising”- Exploits hidden  ...
MDS Benefits Avoid your site from being blacklisted 0-day defense Prevents visitors from getting infected Brand reputation...
MDS service tiers                • Single site                • Domain and email address of user must match               ...
MDS activity                        1. Enter URL You plug in your URL   2. We breadth crawl URL (we stay in the           ...
MDS Analysis - Static   Encoded JavaScript   Document.write with obfuscation   Web Bugs   Vulnerable Control Instantia...
MDS Analysis - Behavioral   Microsoft Windows registry keys being written   Rogue processes being started   Programs be...
MDS User Interface
MDS Dashboard                           Infected          Infections                             sites                    ...
MDS Knowledgebase
Adding Sites - Wizard Upload multiple  sites via CSV Up to 1000 pages Add Asset Tags
Assets
Scanning View Scan  Results View Thread  for each  scan
Reporting
Reporting
Thank You training@qualys.com
Upcoming SlideShare
Loading in …5
×

QualysGuard InfoDay 2012 - Malware Detection Service – Enterprise Edition

625 views

Published on

Published in: Business, Technology, Design
  • Be the first to comment

  • Be the first to like this

QualysGuard InfoDay 2012 - Malware Detection Service – Enterprise Edition

  1. 1. QualysGuard Malware Detection ®Service – Enterprise Edition Marek Skalicky, CISM, CRISC Regional Account Manager for Central & Adriatic Eastern Europe
  2. 2. Why MDS? Thousands of sites are infected daily “Malvertising”- Exploits hidden inside legitimate looking ads Malware propagates to the visitors of the site Unknown malware is hard to recognize Do you know if your site is serving Malware? 1
  3. 3. MDS Benefits Avoid your site from being blacklisted 0-day defense Prevents visitors from getting infected Brand reputation Protects against a loss of revenue SaaS - Nothing to install or download 2
  4. 4. MDS service tiers • Single site • Domain and email address of user must match • 5 scans Free • No scheduled scans, no support • 30 day trial • Up to 20 sites, 1000 pages per site Enterprise • Sites can be be “unvalidated”- users sign terms and agreementEdition Trial • After 30 days, gets downgraded to Free version • 1000 pages by default • More blocks can be purchased (consult your TAM)Enterprise Edition 3
  5. 5. MDS activity 1. Enter URL You plug in your URL 2. We breadth crawl URL (we stay in the domain) 3. We do both behavioral and static analysis 4. Qualys will email user if Malware is found. Qualys Virtual Machine Farm 4
  6. 6. MDS Analysis - Static Encoded JavaScript Document.write with obfuscation Web Bugs Vulnerable Control Instantiation Character encoding on inline frames 5
  7. 7. MDS Analysis - Behavioral Microsoft Windows registry keys being written Rogue processes being started Programs being installed and started Files being written to disk 6
  8. 8. MDS User Interface
  9. 9. MDS Dashboard Infected Infections sites Upcoming Scans Last Scan
  10. 10. MDS Knowledgebase
  11. 11. Adding Sites - Wizard Upload multiple sites via CSV Up to 1000 pages Add Asset Tags
  12. 12. Assets
  13. 13. Scanning View Scan Results View Thread for each scan
  14. 14. Reporting
  15. 15. Reporting
  16. 16. Thank You training@qualys.com

×