The Sqreen agent is a lightweight library that hooks into the many places that an HTTP request will touch: Your database ORM, your user objects, your template renderer, and more. The Security Checkup checks how the contents of the HTTP request modifies the state of the response, how it interacts with your database, and how it affects your users.
The agent detects and blocks attacks from the inside without redirecting traffic or modifying code. By correlating attacks with information from the lowest level of the execution (and not just flat regex patterns), Sqreen can block attacks without triggering any false positives.
When you add our SDK to your app, we can help you detect attackers early, or victims of account takeovers. Sqreen will link attacks to authenticated users and monitor security events performed by them: HTTP errors, TOR access, suspicious IPs, velocity, geolocation, etc.
Dashboards and notifications provide full visibility into your application security. No more alert fatigue: Sqreen only alerts when real security events occur. Remediation details (including stack traces) are provided to help Developers, DevOps, and Security engineers easily fix vulnerabilities.
Sqreen provides complete security coverage, detecting and blocking whole categories of attacks (including zero-days). It blocks OWASP top-10 vulnerabilities, such as SQL injections, No-SQL injections, cross-site scripting (XSS) attacks, code/command injections, and more.
Sqreen also allows you to easily integrate and scale HTTP security headers like the Content-Security-Policy.
The agent puts performance first, and works asynchronously from your app. Detecting and blocking an attack typically takes less than a millisecond.
The agent processes the attack data inside the app and only sends relevant information to our services for further analysis. Your privacy is protected as no personally-identifying information or other private information is sent out of your application.
Sqreen is built with resiliency in mind. The agents operate independently of the Sqreen servers, and will continue to run normally in the face of network issues. Security events pending upload will be flushed as soon as the connection is back. No synchronous calls are performed.
If for any reason, Sqreen servers experience unexpected latency, this won’t affect your application’s performance.
We take advantage of security data coming from hundreds of application protected by Sqreen. Sqreen continuously improves its detection algorithms to improve the security for all its customers.