Scribd Logo
Upload

Welcome to Scribd!

  • DNS AM-Trap-Whitepaperv2.2

    Uploaded by

    Pooja Gupta
    142 views4 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    142 views4 pages

    DNS AM-Trap-Whitepaperv2.2

    Uploaded by

    Pooja Gupta

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    info@isecurenet.in | www.isecurenet.

    in

    DNS AM-Trap

    COMPLETE UNIFIED SECURITY SOLUTION &


    ADVANCE LOG ANALYTICS SOLUTION

    Secure Your
    Business
    From
    Advanced Attacks
    Today’s evolving cyber security landscape the
    attack surface is growing exponentially. Legacy
    technologies are inadequate to offer the
    complete protection. With DNS AM-Trap you
    not only get a protection from one of the major
    vectors of Cyber Attack but get a complete Log
    Analytics solution as well.
    83% of SMB Organizations are Still heavily
    relied on Firewall and Antivirus; Hence those
    majorly are a Targets.
    Today in the next gen era; technology is changing rapidly right
    from Laptops, mobile devices, Tabs. While Organizations are
    still struggling to manage the security from every aspect.
    Majorly SMB organizations are a target since they have either “There is no 100% security, in-
    have not paid complete and proper attention to Cyber security. fact organization should log
    Reasons could be multiple like everything to unfold the attacks
    1. Either these organizations do not have appropriate and methodology attackers
    knowledge and competency adapts, because advanced
    2. They do not have budget to implement those fancy targeted attacks are easily
    and high-end Network Security gears. bypassing traditional firewalls.”
    3. And/Or being managed by single person; they are not
    able to allocate much time to review security.

    Introducing DNS AM-Trap

    A DNS AM-Trap is a Purpose-built DNS Server. All it takes to create one is a list of malicious
    domains or hostnames, which can be added easily to the configuration of the DNS resolver
    server to automatically block access to those locations.

    By utilizing this secure DNS gateway, an enterprise can ensure its employees and IT systems
    are not routed to destinations that could jeopardize communications, proprietary
    information, customers’ private data and more.

    Another major advantage of a DNS AM-Trap is that you already have the foundation you need
    in place with your current DNS resolver infrastructure. Thus, there’s no hardware to install,
    major software upgrades, network reconfiguration projects, or other “show stopper” items
    that can bog down typical security solution deployments. In fact, a DNS AM-Trap can be
    deployed in minutes and offer protection from

    ▪ Phishing/Spear Phishing/Whaling ▪ DNS Tunnelling


    ▪ APT Protection ▪ DNS beacon channels
    ▪ Crypto Mining and Cryptojacking ▪ Data Exfiltration
    ▪ DNS Typosquatting ▪ DGA Attacks

    “DNS AM-Trap is a purpose-built DNS Server which prevents enterprise employees and system
    connections to known malicious Internet locations and can provide immediate feedback to
    enterprise security teams about potential compromises like botnets, APTs and Advanced DNS
    based attacks on their networks”. With Malware Deception Technology Built-in Plus can work
    as a complete Log Analytics Solution . . .
    1
    Active Directory Complete Log Analytics

    2 DNS Based Security for Advanced


    Malware and DNS based Attacks

    3 Firewall Log Analytics PAN/CP/Fortinet

    4 Servers/Applications Log Analytics


    DNS AM-Trap
    SECURITY AND
    LOG ANALYTICS
    SOLUTION 5
    Security Information & Event Management

    6 Threat Intelligence/ Threat Hunting

    DMARC Analytics and Reporting for


    7 Advanced Email Security
    [SaaS/ProDMARC]

    8 Web Server Log Analytics


    IIS/NGINX/APACHE

    Solution Benefits
    ▪ Threat Hunting
    ▪ Catch Malicious Requests ▪ In-built Malware Deception
    ▪ Kill Top 20 Malicious TLD
    Very early Technology
    ▪ Highly Curated Threat Intel
    ▪ Reduce Attack Vector ▪ Analytics based Reports
    for every vertical.
    ▪ Agentless Deployment ▪ Push updated rather than periodic
    ▪ DMARC Analytics [SaaS +
    ▪ Super Easy Management pull
    On-Prem]

    CONCLUSION
    DNS is increasingly being used by attackers
    as a vector; as study shows 96% of the
    Organizations do not keep a track of DNS
    traffic going out.
    This is actively being used to exfiltrate data
    or launch advanced attacks.
    The threat landscape is constantly evolving;
    therefore, the way organizations manage,
    use, DNS services needs to evolve as well in
    response

    Block attack at very early stage.

    Considering famous lock-heed martin Cyber kill chain attackers have started “DNS AM-Trap disrupts this
    targeting Users and not server; or servers via users. Hence, they keep on communication with Fake C&C
    sending spear-phishing emails and follows below chain - IP address thus Wall-garden
    the request and/or deceives
    the malware by sending the
    fake payload to watch the next
    course of action.

    iSecureNet is the intelligence-led security company.


    iSecureNet innovative security technologies, highly curated
    and effective Threat Intelligence and Cyber security
    consulting. With this approach, we eliminate the complexity
    DNS AM-Trap and burden of cyber security for organizations struggling to
    prepare for, prevent and respond to cyber-attacks.

    You might also like