Easy Guard provides an endpoint-based intrusion prevention component that addresses a key part of the security problem that exists today, identifying and blocking real-time attacks against your network and endpoints. Easy Guard Server Protector includes an Application-Based Intrusion Prevention Engine that applies patterns of known attacks to all incoming and outgoing traffic as an additional layer of defense. Easy Guard's unique application-based approach to intrusion prevention uses deep packet inspection and analysis of application layer information to more effectively identify and block malicious attacks.
Protocol adapter attack: Easy Guard Server Protection provides protocol driver-level detection and blocking, which prevents malicious programs, such as Trojan Horse programs, from accessing the network using custom protocol drivers.
Identity blocking: Easy Guard Server Protection incorporates OS fingerprint masquerading and Stealth mode browsing features, which protect systems from OS fingerprinting methods, and block any attempts to obtain browser version and history
ICMP: Easy Guard Server Protector's signature and behavior-based intrusion prevention can block common ICMP based attacks such as Ping of Death and Tribe Flood Network by analyzing the content of packets for known malicious ICMP patterns.
Port Scan Detection and Blocking: Easy Guard Server Protection detects, blocks, and alerts when ports are scanned.
Denial of Service Detection: Easy Guard Server Protector protects against Denial of Service attacks including Code Red, IP Fragmentation Overlap, Jolt2, Land Attack, Ping of Death, Smurf, Targa2, and WinNuke.
Trojan Attack Detection: Easy Guard Server Protection detects, blocks, and alerts the network administrator when Trojan programs attempt to be launched.
NetBIOS Protection: Easy Guard Server Protecter blocks all NetBIOS coming from a network gateway. This allows users to do file sharing with their local subnets.