Sucuri

From Wikipedia, the free encyclopedia
Jump to: navigation, search
Sucuri LLC
Type Private
Founded 2010
Headquarters Menifee, California, USA
Key people Daniel B. Cid and Tony Perez
For the snake, see Anaconda.

Sucuri is a company that offers a security service that detects unauthorized changes to network (cloud) assets, including web sites, DNS, Whois records, SSL certificates and others. It is also heavily used as an early warning system to detect Malware, Spam and other security issues on web sites and DNS hijacking.

Components[edit]

Sucuri consists of a main application that tracks all the domains and sites being monitored and a set of tests to be done. Everything is executed in the cloud and a web interface is available to manage all the information.

  • Web-based Integrity monitoring - Alert on changes to web sites
  • Web-based Malware detection - Crawler and detects malware on web sites
  • Whois monitoring - Tracks your Whois records for changes
  • DNS Monitoring - Tracks your DNS (ip addresses, domains for changes)
  • Web interface - Management interface to manage it all.
  • Malware Removal - Exploit remediation and server hardening
  • Website Firewall - Protection for websites against common threats and DDoS attacks

Controversies and Publicizing mass infections[edit]

Sucuri became famous when they started to publicize the tools used on mass attacks against sites hosted at GoDaddy, Network Solutions and other large hosting companies. GoDaddy criticized them for sharing too much information and possibly helping the attacks. In their defense, they stated that everything they posted were already known by the black hat community and it only helped the users to understand and better protect themselves.

References[edit]

External links[edit]