Unlike vulnerability scanning services or Web-application firewalls, Verisign MalDetector can identify an existing malware infection or suspicious behaviors by proactively scanning an organization’s entire site, adding an additional layer of security beyond scanning for vulnerabilities.
Verisign MalDetector uses both static analysis to detect known exploits, and dynamic analysis that launches and observes Web pages and executable files for suspicious behavior, providing a more comprehensive and accurate scan. The service employs multiple detection techniques, including anti-virus signatures from multiple vendors and proprietary pattern-matching technology that pinpoints the fingerprints of exploit kits and mass-injection campaigns that are otherwise difficult to detect.
Our service offers the ultimate flexibility, putting the customer in charge of the depth and frequency of scanning and allowing them to set custom parameters for alerts based on scan results. Customers can set the service to review anywhere from ten to tens of thousands of pages. Scans can be conducted anywhere from one time up to four times daily, all on a cloud-based system that allows websites to run normally, without any performance impact from the scan.
We provide customers with detailed remediation instructions for removing the malicious content from their website. Remediation instructions include what objects were infected, what detection technique(s) flagged them, and specific details on what action to take (e.g. what files to remove from the server).
The MalDetector Service is highly integrated with our iDefense Public Vulnerability Reports on customers’ Web technologies so it stays up-to-date on malware research and trends.