Download ServerMask v3.0
ServerMask modifies your Microsoft IIS Web server's "fingerprint" by removing unnecessary HTTP response data, modifying cookie values, removing the need to serve file extensions, and adjusting other response information to obscure the identity of your IIS Web server. Successful anti-reconnaissance confuses hackers and makes it more likely they try the wrong exploits first so they can be easily snared by your current firewall and intrusion detection systems.
ServerMask provides the HTTP side of online camouflage to augment the network and server armor provided by firewalls, intrusion detection systems, and Web application firewalls. Already used by thousands of customers around the world including financial institutions, governments, and corporations concerned with security best practices, ServerMask provides important stealth components that are part of a total defense-in-depth security strategy for Windows-based Web servers. With easy installation and configuration in minutes, secure your Microsoft IIS Web servers by downloading ServerMask today!
Features:
- Improved! Mask the Server name header with over 30 other Web server signatures
- Remove Server name header
- Replace Server name header with non-IIS server name
- New and Improved! Randomize Server name header response with non-IIS server names (and control interval between different signature rotation)
- Set a custom Server name
- New and Improved! Unique cookie masking feature
- Automatically rewrite common identifying session cookies such as ASPSESSIONID, ASP.NET_SessionId, CFTOKEN, CFID, PHPSESSID, JSESSIONID, and SITESERVER
- Rewrite arbitrary cookie names
- New and Improved! Automatically remove common IIS and server-side scripting and application server signatures for ASP, ASP.NET, PHP, JSP, and ColdFusion header responses like Public, X-Powered-By, X-AspNet-Version, MicrosoftOfficeWebServer, X-MS-Smart-Tags, X-Meta-MSSmartTagsPreventParsing, and IISExport
- New! Mask internal IP addresses in HTTP header responses with the fully qualified domain name in the Content-Location header
- New! Emulate Apache or Sun ETag format in relevant responses
- Improved! Emulate the order of the HTTP headers that would be sent by a typical installation of the Apache Web server
- Improved! Emulate the Apache header format for the response to an ALLOW request
- Disable potentially dangerous features like Microsoft WebDAV to remove platform-specific header responses with one click (Windows 2000 SP3 or greater only)
- New! Serve responses to URLs and HTTP requests with no file extensions (so extension references like .asp, .aspx and other Microsoft technologies can be removed from source code and URL display)
- New! Includes the Port80 Software File Extension Stripper utility, based on w3compiler technology, for safe removal of file extensions from source code (a freeware utility distributable to Web development teams to integrate file extension anti-reconnaissance into deployment processes)
- New! Normalize and mask various response code messages and formats for some 200, 400, 403, 404, 405 and 501 server responses that are used to ID IIS
- ...much more
System Requirements:
- IIS 6.0 / Windows Server 2003 (all x86-32 Bit versions; sign up for the x86-64 Bit Beta Alert)
- IIS 5.1 / Windows XP (not recommended for production use)
- IIS 5 / Windows 2000
- IIS 4 / Windows NT
Visit Homepage for Moreinfo about ServerMask
Download Location:
ServerMask v3.0
(30 days trial version)