Ammune™ contains an unsupervised learning model that monitors and analyzes data in real-time, identifying and stopping even subtle, stealthy attacks and effectively mitigating these without prior knowledge of the attack pattern parameters.
Scalable container-based native cloud solution, which is also easy to deploy at private datacenters, with optional high-availability cluster configuration
Performing full DPI of HTTP/s traffic (requests and response) at API resolution as part of the overall AI/ML traffic analysis, assuming that all traffic is potentially malicious
Identifying malicious traffic at a very high precision in real time, utilizing advanced AI/ML technology
Plug & Play solution that starts protecting APIs and Apps immediately after its deployment, with almost no need for human intervention along time
The API-WAF module protects APIs from malicious content-based (“classical”) attacks that
appear in the “OWASP Top 10” – APIs and Applications security lists.
Performing in real time, the module conducts full deep packet inspection (DPI), followed
by AI/ML analysis of requests and replies that are passing through, making it the ultimate
first line of API protection.
The API-BOT module protects APIs from business-related bot attacks as they appear in the
“Automated Threats to Web Applications” list, also known as “OWASP Top 20”.
The module performs real-time full deep packet inspection (DPI), followed by near
real-time AI/ML analysis of the API(s) traffic, content, context, and metadata, using
specific bot activity measurements that are made according to bot type activity
characteristics.
The API-DDoS module protects APIs from DDoS attacks tailored against specific API(s). These attacks may use camouflage techniques, such as rotating source IPs or requests content randomization while using optimization algorithms to decide on the next wave of attack. The module performs real-time deep packet inspection (DPI), followed by AI/ML analysis of the API(s) traffic in order to find exceptional API-related resource consumption within seconds.
The API-BL module protects APIs from Business Logic (BL) attacks that can lead to forbidden
data or functionality access, or to abused business processes and fraud. These attacks
partially appear in the “OWASP Top 10 – API security list”, while additional attack types
were added by L7Defense.
The module performs in-session traffic analysis to identify these attack patterns in RT,
including session and historical data points. Together with the API-WAF module, it completes
the first line of protection.
Ammune™ is deployed in datacenters, public clouds and local on-premise, operating as a standalone or hybrid solution in these environments.
L7 Defense operates at leading public clouds, collaborating with major tech vendors, to provide organizations with top-notch inline API security.
Contact us today to learn more
