Intrusion Prevention Solutions


Users or self-propagating threats must gather information on the network's configuration and vulnerabilities to initiate an attack. ForeScout's Active Response™ technology detects this reconnaissance and responds with counterfeit or "marked" information. Any subsequent attempt to use this marked information is proof of malicious intent. By focusing on proving attacker intent, CounterACT Edge can block attackers before they gain access to the network without the need for signatures, deep-packet inspection or manual intervention.



Step 1 - Monitor for Reconnaissance Activity




Step 2 - Interact with Reconnaissance Activity




Step 3 - Prove the Intent of the Attacker and Block the Attack




Why Choose ForeScout?

ForeScout's patented methodology delivers the protection others can only promise:

ForeScout's ActiveResponse™  
Patented Deterministic Methodology
Signature/Anomaly Detection
Requires prior knowledge/Heuristics
Zero-Day Prevention
Delayed Prevention
Unprecedented Accuracy
False positives by definition
Automatic Blocking
Limited Blocking
Set and Forget - Low TCO
Significant Management


ForeScout's threat prevention solution provides accurate, actionable and automated protection against "zero-day" attacks:

  • Accurate Detection
    Unlike signature-based systems which are limited by the quality and availability of pattern files, ForeScout's threat prevention solution is 100% accurate. That is why 100% of our customers set their appliance into automatic blocking mode instead of manual blocking required to avoid false positives and disruptions of legitimate traffic caused by signature-based systems.

  • Actionable Data
    ForeScout security platform dynamically integrates with network devices including routers, switches, firewalls, VPN concentrators and trouble ticketing systems to enable immediate containment and recovery from threats. With 100% accurate detection, ForeScout's threat prevention solution provides actionable data to allow for real-time automatic threat mitigation, based on a range of flexible blocking options defined by the network administrator.

  • Automatic Response
    ForeScout's "detect and protect" mechanism is 100 percent automatic, as it requires no prior knowledge of an attack to protect against "zero-day" threats. ForeScout's threat prevention solution requires virtually no human management and does not require signature updates, tuning or reading through logs, which significantly reduces TCO. Based on the unprecedented accuracy and seamless integration into all network environments, 100% of our customers set their appliances into automatic block mode, allowing their IT staff to focus on other network management issues.

To learn more, download the datasheet or contact us for more information.

Print Page

CounterACT ensures that end-users with infected devices have no choice but to comply.


Michael Wiedower, Security Analyst, Marquette University



Webinars  

Whitepapers  

Datasheets  

Flash Product Demo  

Success Stories