Sqreen, a French startup, has launched a Security Hub with a total of 33 plugins under five categories to enable users to control security of their web app.
Even though companies, especially the bigger players, have security teams exclusively dedicated to protecting the company’s services and products, often products continue being prone to XSS attacks, brute-force attacks, and SQL injections. Founded by Pierre Betouin and Jean-Baptiste Aviat, the basic premise of Sqreen is to enable customers to protect their web service with minimal effort.
It is important to understand that Sqreen isn’t a firewall. Customers are only required to install a library package on the server and make some additions at the top of the source code to necessitate the Sqreen module in the application. Once this process is completed, Sqreen keeps a check on attacks in real time without having much of an effect on performance. The company says there’s only a 4% CPU overhead.
Betouin, co-founder and CEO, Sqreen, said, “Usually, you can’t test the product and you have no information on what they do. We were like this at the beginning of Sqreen. Our positioning was really ‘install our library and we’ll cover a range of security features. We had a big push back. So, we wondered how we could be more transparent, provide something more rational. We explain each plugin completely.”
Besides protecting customers’ web service from widespread attacks, Sqreen also provides security recommendations to enable them to fix vulnerabilities on a regular basis. The startup now works for web apps in Ruby, Node.js, PHP, Java, and Python.
Based on the frameworks and technologies customers are using, Sqreen will recommend plugins for their app. Customers can then enable or disable each plugin and configure the notifications. In addition to that, Sqreen is also working on developing other plugins associated with payment page protection and email abuse.