Finjan RUSafe
Finjan RUSafe sniffer tool for Vital Security enables enterprises to scan web traffic using Finjan's unmatched security engines, without requiring any changes to their security infrastructure and network topology. This innovative tool gives enterprises a clear snapshot of the true nature of their web traffic over a pre-defined period, without disrupting in-line live traffic.
- RUSafe Datasheet 1.93MB
RUSafe sniffs live traffic from the switch, scans the content using Finjan's proactive, behavior-based security engines, and generates traffic logs that can be analyzed in standard or customized reports. Following the RUSafe deployment, enterprises wishing to take advantage of these unique security capabilities can upgrade to Finjan's Vital Security Web Appliance solution, which operates in-line at the gateway in order to protect users from malicious web content.
Highest Rate of Malicious Code Detection
The RUSafe tool is based on Finjan's award-winning Vital Security Web Appliance, which achieves the highest rate of detection of malicious code in web traffic. As such, RUSafe sniffs live traffic and detects malicious code using the following integrated security engines:
- Finjan's patented behavior-based security engine for detection of new and unknown threats
- Finjan's Vulnerability Anti.dote for detection of zero-day exploits and vulnerabilities using virtual patching
- Finjan's Anti-Spyware engine detects Spyware and Adware at the enterprise gateway before they reach corporate PCs
- anti-virus engine (e.g., McAfee®, Sophos®, Kaspersky®) detects known viruses
- URL Filtering engine (e.g., SurfControl®) for full control over your organization's web browsing
Finjan RUSafe Highlights
- Connects to switch via mirror or SPAN port
- Sniffs live traffic, scans content using Finjan's security engines and generates logs for subsequent analysis
- Simple setup and configuration with no change to network topology
- Demonstrates magnitude of security threat without "touching" in-line live traffic
- Utilizes the unmatched security capabilities of Finjan's award-winning Vital Security Web Appliance for enterprises
Simple and Efficient Configuration
RUSafe is implemented as an all-in-one appliance providing scanning, management, reporting and monitoring services. Setup is performed via a secure, web-based interface that includes a user-friendly setup wizard for the initial configuration process. Each enterprise can determine the number of users and ports that will be monitored by RUSafe.
Report Generation
Summary-level and detailed-level reports enable IT managers to analyze the system activity and performance, based on comprehensive logs regarding users' browsing activities. RUSafe generates pre-defined and custom reports, as well as audit reports, which specify the magnitude and type of malicious content detected by the appliance. Examples of reports generated by RUSafe include:
- Details about browsed URLs violating security rules
- List of infected client machines
- Malicious code behavior detected
- Exploited vulnerabilities
- Spyware detected
- URL categories
- Viruses detected
- User activity
