RedShield

RedShield, developed by RedShield Security Ltd., is a web application security service that aims to provide comprehensive protection against vulnerabilities and cyber threats. According to the vendor, this solution is suitable for organizations of all sizes, ranging from small businesses to large enterprises. The product is utilized by IT security professionals, application developers, and web application administrators across various industries such as financial services and healthcare.

Key Features

Fully operated, tuned, and managed Web Application Firewall (WAF) with regular effectiveness audits: RedShield offers a fully operated, tuned, and managed Web Application Firewall (WAF) as part of its service. The vendor claims that the WAF undergoes regular effectiveness audits to ensure optimal security.

Developed shields (code objects) deployed on the edge compute platform to address vulnerabilities identified in security tests: RedShield provides developed shields, which are code objects specifically designed to address vulnerabilities identified in security tests. These shields are deployed on RedShield's edge compute platform to mitigate the identified vulnerabilities.

Standard infrastructure, platform, and services including continuous DDoS protection powered by AWS: RedShield provides standard infrastructure, platform, and services to its customers, including continuous Distributed Denial of Service (DDoS) protection. According to the vendor, this DDoS protection is powered by Amazon Web Services (AWS).

Advanced application layer mitigation: RedShield offers advanced application layer mitigation to protect web applications from sophisticated attacks. This feature includes techniques such as rate limiting, dynamic challenging, and heuristics-based bot determination.

Vulnerability scans, monitoring, risk scoring, audit, and analysis: RedShield provides vulnerability scans, monitoring, risk scoring, audit, and analysis services. According to the vendor, these services assist organizations in identifying and assessing vulnerabilities in their web applications.

24/7 Analyst, engineer & developer helpdesk for emergency support: RedShield offers a 24/7 helpdesk staffed by analysts, engineers, and developers who provide emergency support. The vendor states that this helpdesk ensures organizations have access to expert assistance in case of security incidents or immediate support requirements.

Advanced bot protection: RedShield includes advanced bot protection as a standard feature. According to the vendor, this feature is designed to detect and mitigate automated threats, such as carding, credential stuffing, account takeover, and denial of inventory.

Visibility of blocked and alerted attacks: RedShield provides organizations with visibility into blocked and alerted attacks. This feature allows organizations to monitor and track the attacks that have been blocked or alerted by RedShield's security measures.

DDoS protection with ultra high capacity and autoscaling network: RedShield offers distributed denial of service (DDoS) protection with an ultra-high capacity and autoscaling network. Working with AWS, the vendor claims that RedShield's network has scrubbing capacity in the hundreds of terabits per second (Tbps).

Dynamic challenging & rate limiting: RedShield employs dynamic challenging and rate limiting techniques to protect web applications. According to the vendor, dynamic challenging involves presenting escalating challenges to differentiate between human users and bots, while rate limiting helps prevent abuse and excessive requests by imposing limits on the number of requests allowed within a specific time period.