There are several tools available to hack IIS server (type IIS hacking tools on Google you’ll find lot of them) therefore if you are running a IIS server then you must be careful it should be kept overprotected since tools assures that even skids or script kiddies can attempt a hack and can also become successful. Following are some tools that can help you protect an IIS server, please note that you’ll not need all of them, choose them according to your need.
- Server Mask:
It modifies all you web server’s “fingerprint” by removing unnecessary HTTP response data, modifying cookie values, removing the need to serve files extensions and adjusting other response data. Server mask makes it difficult to find real banner, fingerprint and vulnerability of system thus fooling an attacker to try wrong exploit thus allowing detection of attack by IDS and IPS.
- Server Mask IP100:
It stops TCP/IP fingerprinting used to exploit system using flaw in TCP/IP model. It stops IP spoofing by adding authentication to unprotected TCP/IP packets. It helps in stopping DoS attack, session hijack, DNS cache poisoning attack.
- Custom Error:
It allows developers and administrators to create custom error pages. A custom error page disallows an attacker getting banners from error pages. Making custom error pages not only allows proper link management but also guarantees better Search Engine Optimization (SEO).
- Link Deny:
It is used to control access to your website or web based application content. Link Deny addresses all sorts of common site problems from simple security to traffic management.
- Server Defender AI:
It is a Application Level Firewall. It provides all sorts of basic protection that can be provided to applications running over IIS server. It is must tool for everyone who hosts several applications over IIS.
- IIS Lockdown:
It restricts anonymous access to system utilities as well as have ability to write to web content directory.
- URL Scan:
It is a security tool that screens all incoming requests to the server by filtering the requests based on rules set by the administrator. Filtering requests helps secure the server by ensuring that only valid requests are processed. Provides protection against all types of URL based attacks including directory transversal Unicode exploit.
- Microsoft Baseline Security Analyzer (MBSA):
It is an easy tool that helps small and medium business to determine their security state in accordance with Microsoft security recommendations and offers remediation guidance.
Source: CEH Courseware