Firewall of Parsov applications
The web application firewall product of Gostar Sharif Security Company with the Parsof brand name is the result of the efforts and activities of Iranian specialists in this company.
This product can be used as a hardware (appliance) without the need to change the web servers and can be deployed in different ways in the desired organizational networks.
Among the reasons for the independence of the Parsov product from the UTM system, the following can be mentioned:
The need for high processing power to check communication in the application layer
Reducing the overhead caused by the collection of IDS/IPS, antivirus and firewall applications under the web
Separating the complexities and specific settings of web applications from network layer settings
Parsoff provides protection against common attacks and vulnerabilities, including the top 10 vulnerabilities identified by OWASP. Some of these attacks are:
Script attacks including XSS
Injection attacks (SQL Injection, Null Byte Injection, Command Injection)
Overflow attacks include Buffer Overflow, Integer Overflow, Format String attack
Attacks related to cookies and session information, such as Session Hijacking
Dealing with Web Defacement
Attacks caused by information leakage (Information Leakage)
Attacks caused by uploading infected files
Attacks related to XML and Json data
Denial of Service (DoS) attack at layer 3 and layer
ClickJacking attack
BruteForce attack