The system analyzes HTTP/HTTPS traffic in real time and blocks anomalous or harmful behavior, using customizable rules that Threat Intelligence keeps up to date.
Key Operational Modules
-
Intrusion Prevention Module:
Blocks malicious requests immediately. -
Score Engine:
Ranks threats, reduces false positives, and tunes response actions. -
Network Threats Retriever:
Updates the rules, signatures, and databases that the other modules use.
Distinctive Features
Multicloud Infrastructure
- Multicloud architecture:
Cloud Defender runs mainly on the Google Cloud Platform (GCP) and draws on globally distributed resources from other providers.
This approach delivers:- Real-time threat analysis and detection.
- Better overall performance.
- Less dependence on a single cloud, for higher reliability and operational continuity.
Interactive Dashboard
- Continuous monitoring:
Through the Aegister Cyber Console, you can:- Monitor the status of the Cloud Defender system.
- Check active services and review the volume of requests processed and blocked over time.
- View the source and destination IP addresses behind blocked traffic.