DAS-Security

DBAPPSecurity Co., Ltd. (DAS-Security) was founded in 2007 and officially listed on the Sci - Tech Innovation Board on November 5, 2019, with the stock code 688023. DAS-Security takes DAS ( D stands for Data Security, A for AI - Artificial Intelligence, and S for Security Services ) as the core strategic foundation . With its digital security capabilities mainly covering network security, data security, cloud security, and security services, it provides digital security products and services to over 100,000 clients. DAS-Security is a leading vendor in cybersecurity. Their offerings span across network security, data security, cloud security, and comprehensive security services. They present an extensive portfolio of products and services, such as Web Application Firewall (WAF), Privileged Access Management (PAM), Security Information and Event Management (SIEM), Network Detection and Response (NDR), Database Audit and Risk Control System (DBAuditor), SaaS Security, and Managed Detection and Response Services (MDR).

News & Events

Products & Services

DAS Web Application Firewall
(DAS-WAF)

Unified Security Management Platform
(DAS-USM)

DAS Network Detection & Response
(DAS-NDR)

AiLog Big Data Log Management & Analysis Platform
(AiLog)

DAS Database Audit & Risk Control System
(DAS-DBAuditor)

DAS Vulnerability Scanning System
(DAS-RAS)

DAS Web Application Firewall (DAS-WAF)

Web Application Firewall (DAS-WAF) is a cutting-edge application security product designed to safeguard websites, web applications, and other web-based platforms against a wide spectrum of application threats. By combining advanced machine learning algorithms and threat intelligence, DAS-WAF performs multi-dimensional and in-depth analysis on web traffic to detect and block both known and zero-day attacks.

Key benefits for DAS-WAF include:

Comprehensive Monitoring and Defense
- It provides intelligent protection against known, unknown, and zero-day attack behaviors through a combination of its foundational security engine, intelligent semantic analysis engine, machine learning engine, and behavior analysis engine. This ensures comprehensive protection against various threats and attacks, safeguarding network security and data integrity.
Rich Application Scenarios
- The Web Application Firewall is delivered in both hardware and software forms and supports multiple deployment modes, including transparent proxy, reverse proxy, routing, bypass monitoring, and embedded options. These flexible deployment modes allow you to choose the most suitable method based on their specific needs. The system also supports centralized management, enabling unified management of WAFs across different regions or clusters through a central deployment, simplifying configuration distribution and centralized log collection and analysis.
Dual-Protocol IPv4 and IPv6 Support
- The Web Application Firewall supports dual-protocol IPv4 and IPv6 stacks under various deployment modes such as transparent proxy, reverse proxy, and bypass mirroring. It provides comprehensive security protection for both IPv4 and IPv6 web services. The system also supports management via IPv6 addresses.

Unified Security Management Platform (DAS-USM)

The Unified Security Management Platform (DAS-USM) provides a one-stop account operation and maintenance management solution covering three phases: pre-operation, in-operation, and post-operation. This includes host discovery, account discovery, account analysis, permission control, operational auditing, automatic password change, and more.

Key benefits for DAS-USM include:

Simplified Management
- Centralized management of all device access permissions simplifies the workload of operation and maintenance (O&M) personnel and improves management efficiency.
Efficient O&M
- Provides a variety of O&M tools and methods, retaining original O&M habits, improving operational efficiency and accuracy.
Automatic Password Change
- Periodically updates account passwords, ensuring password complexity and security, thereby reducing the risk of password leakage.
Automatic Password Change
- Periodically updates account passwords, ensuring password complexity and security, thereby reducing the risk of password leakage.

DAS Network Detection and Response (DAS- NDR)

DAS-NDR integrates traffic and malicious file detection, analysis, etc. Relying on feature libraries and detection models, along with intelligent technologies like machine learning, it instantly detects known and unknown threats across the APT attack chain and over 20 types of attacks. It helps identify advanced threats, visualizes threat situations, stores data for analysis, gives real – time warnings, and boosts users’ attack awareness.

Key benefits for DAS-NDR include:

Incident Monitoring and Response
- DAS-NDR is capable to detect security incidents such as mining, ransomware, botnets, data breaches, host compromises, and lateral attacks. It can also collaborate with firewalls, WAFs, and EDRs to handle and respond to these incidents.
Attack Forensics and Tracing Analysis
- DAS-NDR can not only identify existing threats but also record information such as the source of the threat, attack methods, attack process, attack targets, and attack impacts.
Detection of Known and Unknown Threats
- DAS-NDR can conduct comprehensive detection and analysis for various known and unknown threats. Its detection scope covers the entire APT attack chain.

AiLog Big Data Log Management and Analysis Platform (AiLog)

The AiLog Big Data Log Management and Analysis Platform (AiLog) is a next-generation log analysis and security event management system built on a big data architecture. It can collect logs and data from various devices, including logs, performance metrics, security alerts, business data, and user behavior data. After aggregating, standardizing, and filtering these data, AiLog offers functions such as log query, analysis, dashboard setup, report generation etc.

Key benefits for AiLog include:

Flexible and Cost Effective
- Features a multi-tenant architecture for efficient, secure, and cost-effective solutions for organizations of all sizes. Each tenant can customize configurations. It also provides detailed data permission control and cloud-native deployments, reducing deployment and maintenance costs.
Powerful Log Management and Analysis Capabilities
- AiLog can collect logs from over 250 brands and 5000+ device models, covering a wide range of network, security, host, application, and database devices. It parses logs from different sources and formats with over 200 rules (customizable) and offers real-time search, analysis, dashboard definition, reports, and ad-hoc queries.
High Performance and Scalable
- It can process over 1 million logs per second and supports elastic scaling. In high-volume log scenarios (millions of EPS), it addresses high-performance processing. It also supports various deployment modes like cluster deployment for scalability and high availability.
Enhanced Security and Threat Detection
- Integrates global threat data sources for real-time intelligence support. Uses machine learning for deep log analysis to identify potential threats and abnormal behaviors. Built-in security analysis scenarios help detect device anomalies, exploitations, and lateral penetration.

Database Audit and Risk Control System

(DAS-DBAuditor)

DAS-DBAuditor focuses on security events for comprehensive and accurate auditing. It records real-time database network activities, conducts detailed operation audits, and manages compliance by alerting in real-time to risky behaviors.By recording, analyzing, and reporting database access, it helps admins generate compliance reports, trace incidents, and use big-data search to quickly query audit reports and find event causes.

Key benefits for DAS-DBAuditor include:

1. Easy to Achieve Compliance
  - DAS-DBAuditor offers a diverse range of reports, including compliance reports that adhere to industry security standards like Sarbanes – Oxley (SOX) and Level Protection Reference reports.
2. Accurate Risk Detection
  - DAS-DBAuditor builds a security baseline based on historical access patterns, enabling it to detect new threats such as access from new IPs, new clients using old IPs, or new database accounts used with old IPs.
3. High-Traffic Performance
  - DAS-DBAuditor has been tested and verified to handle up to 130,000 audit logs per second, with a single agent forwarding rate of 800 Mbps. This enables it to flawlessly manage database auditing tasks in high-traffic scenarios.

DAS Vulnerability Scanning System (DAS-RAS)

The DAS Vulnerability Scanning System (DAS-RAS) integrates DAS-Security’s years of best-practice experience in vulnerability mining, penetration testing, and vulnerability inspection methods. It combines host security scanning, website security scanning, database security scanning, weak password discovery, and baseline configuration verification. DAS-RAS helps users improve their network security protection performance and anti-damage capabilities.

Key benefits for DAS-RAS include:

1. Comprehensive scanning task
  - “Active + passive” dual-engine driven, it can fully cover various asset types such as hosts, websites, databases, and container images, and accurately detect risks such as security vulnerabilities, configuration issues, weak passwords, and sensitive events.
2. Intelligent collaborative mode
  - An innovative collaborative scanning mode that can complete asset detection, host and Web vulnerability scanning with a single click, realize “asset-vulnerability-risk” correlation analysis, and significantly improve the detection efficiency and coverage in complex network environments.
3. Rich evaluation templates
  - It has built-in compliance policy libraries such as Classified Protection 2.0, MIIT baselines, and DAS-Security’s specifications, and supports custom baseline configuration to flexibly adapt to regulatory requirements of different industries.