Security Technologies
As the creator of Snort®, the de facto standard for intrusion detection and prevention, our roots are in security. With solutions from the network to the endpoint, Sourcefire provides customers with Agile Security™ that is as dynamic as the real world it protects and the attackers against which it defends. Sourcefire Next-Generation IPS (NGIPS) technology, available in standalone solutions or built-in to the Sourcefire Next-Generation Firewall (NGFW), is deployed by more organizations than any other IDS/IPS technology on the market. Don’t just take our word for it, here’s proof from the industry:
- Fastest and most accurate detection tested by NSS Labs
- Leader in the Gartner Magic Quadrant for Network IPS Appliances
- Best IDS/IPS from SC Magazine
- Best IPS from Information Security Magazine
- ICSA Labs Certified
Sourcefire IPS™ (Intrusion Prevention System)
Best-in-Class Intrusion Detection and Prevention
Today’s networks are highly dynamic. Threats are constantly evolving and becoming more sophisticated. Network security breaches continue to occur because static defenses can’t protect today’s dynamic networks against dynamic threats. Learn why more organizations depend on Snort® than any other intrusion prevention technology worldwide, and why thousands of enterprises rely on Sourcefire’s IPS and real-time adaptive security solution to protect their networks.
SOURCEFIRE IPS—THE FOUNDATION OF THE SOURCEFIRE 3D® SYSTEM
Protection Against Known and Unknown Threats
The Sourcefi re Vulnerability Research Team™ (VRT) works around the clock to ensure that Sourcefire commercial customers and open source Snort users are protected against both known and unknown threats. The VRT leads the IPS industry in addressing Microsoft Tuesday vulnerabilities on the same day they are announced.
It’s often the unknown threat that can be the most damaging. That’s why Sourcefire publishes vulnerability-based Snort rules. Unlike an IPS that relies primarily on exploit-based signatures, Snort rules offer protection against any possible exploitation of a vulnerability. This was illustrated when Sourcefi re protected its 3D customers and open source Snort users more than two years in advance of the Confi cker worm.
Sourcefire’s IPS appliances provide comprehensive threat protection against:
- Worms
- Trojans
- Backdoor attacks
- Spyware
- Port scans
- VoIP attacks
- IPv6 attacks
|
- DoS attacks
- Buffer overflows
- P2P attacks
- Statistical anomalies
- Protocol anomalies
- Application anomalies
- Malformed traffic
|
- Invalid headers
- Blended threats
- Rate-based attacks
- Zero-day threats
- TCP segmentation & IP fragmentation attacks
|
Sourcefire's award-winning network security solutions are complemented by the following industry-leading technologies:
FireSIGHT™ is an innovative technology built into all Sourcefire next-generation security solutions—NGIPS and NGFW—to provide the network intelligence and “context” required to respond to changing conditions and new attacks. The visibility and automation provided by FireSIGHT technology make networks more secure and reduce operational costs.
FirePOWER™ is a unique acceleration technology that supports a range of Sourcefire security solutions with unmatched performance and energy efficiency on a universal security architecture. With industry-leading IPS throughput combined with <150-microsecond latency, real-time applications such as VOIP, streaming video, and video conferencing (voice and video) are secured without compromising performance.
Vulnerability Research Team™ (VRT) is a group of leading security experts that maintain the open source community rule set and develop the official Snort rules used by the Sourcefire NGIPS and NGFW solutions. The comprehensive threat protection offered by Sourcefire is consistently ranked number one. View our NSS Labs test results for more information.
Snort®, an open source intrusion detection and prevention technology, was created in 1998 by Martin Roesch, the founder of Sourcefire®. Snort uses a rule-driven language which combines the benefits of signature, protocol and anomaly-based inspection methods. With its dramatic speed, power and performance, Snort quickly gained momentum. With nearly 4 million downloads to date, Snort has become the single most widely deployed intrusion detection and prevention technology in the world.
Anti-malware products usually slow down an endpoint and require large downloads of the latest detection. Sourcefire anti-malware solutions provides accurate, lightweight end-point protection by moving detection and analysis to the cloud for true, real-time protection. Try open source ClamAV or commercial Immunet® today. Either one can run by itself or run it alongside your existing antivirus or anti-malware solution. | 
