Control the integrity of your sites and web apps
Be alerted whenever unplanned changes occur on your website or web application: a modified, created or deleted object can be a threat to the security of your website. HTTPCS Integrity, the next-generation integrity controller allows you to map your site, to identify 404 errors and 301 & 302 redirects like a web crawler and has been designed to identify any estimated malicious change on your site or on external sources: a hacked partner, a fraudulent advertising agency, etc.With HTTPCS Integrity, keep control over the integrity of your site and be alerted in real time of the slightest change to react as quickly as possible!
How do I know if I'm being hacked?
Every day, thousands of sites are hacked and it takes an average of 87 days for those involved to realise that they have been the victim of hacking..
Cyber threats are a constant risk but how can you get alerted when a hacker infiltrates your website? How can you make sure your visitors never see the dreaded message "this site may damage your computer"?
HTTPCS Integrity will alert you to any changes on your website or web application that may be dangerous or fraudulent.
Full website mapping
Integrity controller analyse and sort every URLs found on a website (or a web application) and theirs links to explore in priority the most relevant pages based on data partition algorithm, links analytics and language processing applied to URLs.
Our technology allows to access 100% of the website perimeter by having an exhaustive indexing of access points and their metadata. And this even when they are requested after user actions, on fully dynamic pages built in Javascript (Angular, React, Vue.Js, etc...) or behind complex forms.
Master the complete mapping of your site or web application: inordinate long loading time, redirected urls, images, server errors, 404 errors, 301 and 302 redirects, SSL certificate errors, external sources…. And be warned, in case of modifications, of corrupted / malicious files (malware, viruses) or simply of errors.
Analyze & Master external sources
HTTPCS Integrity not only maps your site and your internal links, it goes further by carrying out a complete File Integrity Monitoring, our solution HTTPS Integrity does an analysis of all files' types (internal and external) (media, binaries, documents, archives, javascript, CSS, images,…) .
This analysis will help protect you against malware and viruses that may be found or be integrated into your site.
In this case, our HTTPCS Integrity Integrity Analyzer will alert you immediately!
Using 100% mapping, the tool traces the origin of parent requests from all resources as well as the type of request executed (AJAX, frames, scripts, ...)
It thus makes it possible to find the series of hyperlinks leading the robot to these pages from the base of the website.
Finally, it captures all of the resource and field resolution times for each request and response from the server.
Fraudulent redirect detection
Regular and daily monitoring of sites to alert redirections due to malicious external scriptions or injections into the site code ("malvertising", click fraud, Scam: "You won an iPhone ..", deface. ..)
When a redirect is detected, the list of addresses through which the browser has been redirected is saved and the final page captured. (screenshot)
Real time alerts 24/7
A modification on your website or web application? Be the first to know about it with HTTPCS Integrity's real-time alert.
Wherever you are, 24 hours a day, 7 days a week, keep control over the integrity of your web content to react quickly and efficiently to any alert.
Technology detection & SSL / TLS certificate
The robot can detect many technologies, whether front-end (framework css, js, ...) or back-end (CMS, Wordpress, PHP, MySQL, ...)
Integrity controller also checks the validity of your SSL / TLS certificate and alerts you when you approach its expiration date so that your site remains always accessible.
Visualising the changes
In your User Dashboard, access the HTTPCS Integrity menu and view alerts for all detected changes. By clicking on the detail of the alert you will visualize the change "before / after".
This functionality is ideal for detecting MageCart attacks (Modification of an existing script to integrate malicious code in order to steal sensitive data (bank, personal data, etc.)
This way, you will be able to white list "normal" changes, approved and performed internally, or validate the alert (if the change has not been approved) and share it live to your technical team.
JavaScript error detection
The integrity checker detects JavaScript's errors it encounters when mapping the site.
Then, you obtain a summary list of all JavaScript errors with the location of the error, the number of times it was detected as well as the complete technical detail (stack).
This tool is a real time saver to ensure the proper functioning of your site.
They trust us
Ziwit (HTTPCS) has the VISA
The PASSI qualification is a security VISA issued by the ANSSI (National Agency for the Security of Information Systems). This certificate issued by ANSSI bears witness to our skills and expertise as auditors, but also to the attention we pay to protecting the integrity of the confidential information to which we may have access during our services to our customers.
Ziwit (HTTPCS) holds the label
Ziwit (HTTPCS) expert in digital security, guarantees technical expertise as well as quality advice to prevent acts of cyber-surveillance and secure your IT installations and your websites.
As an ExpertCyber certified service provider, Ziwit (HTTPCS) is committed to respecting its charter of commitments.
Ziwit (HTTPCS) holds the label
The France Cybersecurity label offers the guarantee that the labeled products, solutions and services are designed, developed and operated in France, by a dynamic and innovative industrial sector recognized by the market. It is therefore a mark of excellence for companies.
Ziwit (HTTPCS) holds the label Qualiopi
QUALIOPI is the unique quality certification mark for training organizations. It has been mandatory since January 1, 2022. ZIWIT fully complies with the 32 new indicators in the national quality reference framework, organized around 7 quality criteria. Our training courses can therefore be referenced by accredited organizations and are eligible for funding.
Ziwit (HTTPCS) is part of the national systemcyber malicious
mission is to support victims of cyberattacks through its cybersecurity solutions and tools.
As a service provider listed on the french government platform Cyber Malicious, Ziwit (HTTPCS) is committed to respecting its charter of commitments.
Our C)PTE certified cybersecurity experts (CERTIFIED Penetration Testing Engineer)
Developed on the basis of the US Force One methodology, and accredited by both the NSA and the FBI, this certification allows us to explore all the existing technical and non-technical means of accessing an information system in an illicit way. Our pentesters are trained in the art of ethical hacking and the latest techniques in penetration testing, with the aim of recognizing each key element: Information gathering, scanning, enumeration, exploitation and reporting.
Our CEH certified cybersecurity experts (Certified Ethical Hacker)
Our pentesters are experienced in vulnerability research. They have the internationally recognized CEH certification to guarantee you a qualified and ethical technical auditor.
Ziwit is certified OSCP (Offensive Security Certified Professional)
OSCP is an ethical hacking certification offered by Offensive Security (or OffSec) that teaches penetration testing methodologies and the use of the tools included with the Kali Linux distribution. The OSCP is a hands-on penetration testing certification, requiring holders to successfully attack and penetrate various live machines in a safe lab environment.
Ziwit is certified OSCP (Practical Network Penetration Tester)
Delivered by TCM Security, the PNPT certification is a unique ethical hacking exam that evaluates a pentester's ability to perform a professional level network penetration test and its potential to perform open source research (OSINT) to gather information on how to properly attack that network. Our pentesters know how to make the most of their Active Directory exploitation skills to perform A/V and egress bypasses, lateral and vertical network movements, and ultimately compromise the domain controller under investigation.
Ziwit (HTTPCS) holds the Cyber Essentials certification
Cyber Essentials is a certification supported by the British government (United Kingdom) to help organizations ensure operational security against cyber attacks.
Ziwit holds the IASME GDPR certification
Issued by the IASME consortium and supported by the UK Government, "IASME GDPR" reinforces Cyber Essential by validating Ziwit's GDPR skills, and its ability to comply with its requirements. IASME GDPR certification is proof that ZIWIT has taken enhanced measures to protect your business and your data from cyber-attacks on the Internet.
Ziwit (HTTPCS) holds the Cybersecurity Made In Europe certification
The "Cybersecurity made in Europe" certification is designed to promote European cybersecurity companies and increase their visibility on the European and global market. The certification raises awareness of the strategic value of cybersecurity companies originating in Europe and developing their activity on the basis of European values of trust.
Ziwit (HTTPCS) is a member (Alliance for digital trust)
ACN is a group of companies that award services, solutions and technologies that mitigate risk and therefore increase trust.
Ziwit (HTTPCS) is an associated memberCampus Cyber
Campus Cyber will be a French hub of cybersecurity by 2022 that will bring together the main national and international players in the field.
basic
Plus
Full
Managed Services
Our SaaS HTTPCS solutions can be fully managed so you can benefit from the expertise of product engineers to optimize your vulnerability management.
Contact usLIST OF DETECTED CHANGES
On your User Dashboard, access the list of detected alerts or changes. Filter by alert type (404 error, redirection error, SSL, server error, URLs, images, external sources ...) and share them with your team.
SITE FINGERPRINT
Our Integrity Tester actually takes a "fingerprint" of your website or web application and all their associated URLs. By scanning them again, the robot will detect if there has been a change.
USER DASHBOARD
Access a dashboard to view the map of your site and the changes detected by our innovative Integrity Analyzer. View, filter, display the details through an intuitive interface.
ADVANCED CONFIGURATION
Simply set up your product: frequency of the scan, types of alerts to detect, recipients of email and SMS alert messages... Need a custom feature? Contact your account manager!
NO INSTALLATION REQUIRED
HTTPCS Integrity is not intrusive. There is no software to install or deploy on your servers! The scan is done from the outside and you can simply access our web interface by creating your HTTPCS account.
When you subscribe to HTTPCS Integrity, a dedicated HTTPCS cyber expert will be by your side. From the definition of your project to its deployment, we aim to provide the highest quality of service.
Frequently asked questions about the integrity of website
What does "site integrity" mean?
The integrity of a web application or website means the fact that the site remains as it was initially (at the time of the first scan) and has not been modified: alteration, deletion or modification.
Who should use HTTPCS Integrity?
Do you have a website or a web application and want to know about potentially dangerous changes? Whatever the size of your business or your industry, HTTPCS Integrity is for you!
Why should I check the integrity of my site?
Missing files, broken links, 404 errors, external sources hacked ... Any change on your site can have serious long term consequences: loss of confidence, impact on SEO, traffic and revenue.
I've been hacked, what should I do?
You have received an alert from HTTPCS Integrity detecting a change on your site. You noticed that there was an intrusion and that you had been hacked. To avoid any risk, contact us.
How does the 14-day HTTPCS free trial work?
The HTTPCS 14-day free trial is available without obligation. This version allows you to discover the console and get an overview of the solution in its BASIC formula.
What can HTTPCS Integrity detect?
HTTPCS Integrity can detect 404 errors, redirection errors, Javascript errors, the validity of the SSL, DNS verification, server errors, abnormally long loading times, URL concerns, such as insecure http requests, problems with images, the web reputation of internal and external resources, changes in files and the technologies used.
Can I create notifications based on the type of errors or problems reported?
You can create customized notifications depending on the type of errors or changes identified.
How can I be notified when an event is identified on my site?
You can be notified by email, indicating the email addresses to receive notifications or by an API.
