Is Your Software Secure?®
SOFTWARE PROTECTION
Electronic Armor® (EA) protects executables, shared libraries, and scripts from unauthorized access, reverse engineering, and signature detection. Given the growing commodity of intellectual property, government secrets, and malicious access, the challenges to information protection are endless.
Electronic Armor can ensure the security and integrity of protected applications both at rest on disk and during execution. Depending on the deployment scenario, EA supports:
- Debug prevention
- Copy protection
- Input/Output file protection
- Secure coprocessors
- Out of band storage and execution
- Out of band attestation
- Secure loading
- Tiered encryption
- Layered defenses
- Integration with other AT solutions
Electronic Armor currently supports Linux (Kernel version 2.6.1 and higher on x86, x86_64 and PPC) and Solaris 8-10 (x86 and SPARC).
Efforts are currently underway to port EA to other UNIX platforms and configurations including VxWorks, RedHawk Linux and the ARM architecture. Pikewerks also offers for evaluation, Binary Fortress, a hypervisor based Windows® solution that has been developed using Microsoft® Visual Studio® to work with Windows Server.
Depending on customer requirements, EA can be tailored or ported to additional platforms and architectures.
Please contact Pikewerks for additional details, to schedule a demonstration, or to receive an evaluation version.
Think Your Systems are Secure? Take a Second Look®
VOLATILE MEMORY ACQUISITION AND ANALYSIS FOR LINUX-BASED SYSTEMS
Second Look® captures, and forensically preserves, a computer's volatile random-access memory (RAM). It analyzes the Linux Operating System Kernel in live memory or via a memory image, verifying its integrity and searching for signs of rootkits or other subversive software that have modified the executable kernel code or kernel data structures.
With Second Look, analysts and investigators have a tool that provides a comprehensive view of a system (uninfluenced by any malware that might be running on it). The memory image, or snapshot, provides a comprehensive view of the system including: logged in users, running processes, active network connections, and many other essential system parameters. Second Look uncovers hidden kernel modules, processes, and network activity with ease. Additionally, in an effort to assist with the analysis of kernel memory, Second Look integrates a real-time disassembler that allows inspection of any function or segment of kernel memory.
As threats to computer systems continue to increase in sophistication, traditional post-mortem (dead box) forensic analysis of hard disk contents is no longer sufficient. Advanced exploits allow for the implantation of rootkits and backdoors directly in memory, without an actual file ever touching the disk. Volatile memory must be acquired in a trustworthy fashion, and analyzed with state-of-the-art security software such as Second Look.
Whether you are a member of an intrusion response team seeking to quickly determine what happened after an incident, a forensic investigator seeking evidence to confirm or deny a possible Trojan defense in a computer crime case, or simply a paranoid system administrator looking to apply true defense-in-depth security, Second Look is the tool you need.
Please contact Pikewerks for additional details, to schedule a demonstration, or to receive an evaluation version.