Imunify 360

Imunify360 Proactive Defense

Preemptive security, the one that actually stops attacks

You don’t just need an all-in-one security – you need an effective one. The one that actually stops hackers.

Software vulnerabilities are constantly being exploited and monetized. In fact, the number of new Linux malware programs increases threefold each year. Malware scanners focus on scanning and identifying infected files already on your system, but how do you protect against new security threats? The solution is Proactive Defense, an unprecedented defense against known and unknown attacks.

Proactive Defense protects websites running PHP, the most common programming language, against zero-day attacks. It identifies attacks on your Linux web servers in real time, then blocks potentially malicious executions automatically and with zero latency. Proactive Defense uses a unique method of identifying security risks – it analyzes what scripts do rather than what is actually in the code or file.

Millions of malware strains are focused on attacking web applications. Imunify360 identifies and stops them

PHP is the most popular scripting language, with more than 80% of server-side scripts running web applications. Because of this wide application usage, PHP is constantly exploited by hackers, making sites vulnerable. Popular CMS applications – including Joomla, WordPress, and Drupal – often introduce security flaws into web applications through the use of plugins and custom scripts, or when not updated to the latest version. Millions of different malware strains are focused on attacking those applications, yet, they all do the same thing. With only a few lines of code, hackers can inject malware, deface your site, or escalate privileges. We analyzed thousands of malware samples to develop heuristics to distinguish malicious behavior from an execution of legitimate scripts. We have tested Proactive Defense for false positives on most common CMS and e-commerce applications, and a large number of popular plugins. Due to the diversity of samples collected from websites all over the world, and thanks to the cloud heuristics of Imunify360, we have developed an exclusive and diverse database of insights that ensure the ultimate protection against attacks.

All-in-one security with robust cloud protection against the newest attacks, powered by AI

We are constantly collecting and analysing a massive amount of information about new attacks on a global scale. Our sophisticated detection of known and unknown security threats, including zero-day and distributed brute force attacks, delivers powerful, complete protection for your server.

Proprietary technology with Proactive Defense stops known and unknown malware

Imunify360 continuously analyses scripts and recognizes dangerous behaviors in them in real time. It stops malware, both new and old, from running on your servers in the first place.

Hands-off automation right inside your hosting control panel, with 24x7 support

Imunify360 automatically protects your servers, is easy to setup and use. You can check in on the overall state of your server’s security through the integrated console right inside your hosting control panel (cPanel, Plesk, DirectAdmin and stand-alone installation).

The Complete Six-Layer Security for Your Linux Web Server

Imunify360 is a next-generation security solution built for Linux VPS, Dedicated, and Shared servers. It uses cloud heuristics and the unique, proactive approach to provide total protection against known and unknown attacks.



Centralised Incident Management

A central dashboard is available directly within your control panel*, allowing you to quickly check in on the overall state of your server and manage all aspects of its security. The central dashboard displays all security events and the latest incidents updated every 60 seconds. It allows you to filter and select events based on various parameters, review the details of those incidents, access white list and black list management features, view settings and reports, and much more.


Advanced Firewall

imunify 360

Imunify360 offers advanced firewall protection that uses cloud heuristics and artificial intelligence to detect new threats and protect all servers that run the software. The firewall is capable of defending against brute force attacks, DoS attacks, and port scans.

The firewall tightly integrates with mod_security web application firewalls to dramatically enhance its usefulness. In combination with WAF, we can stop the majority of web application attacks even before they start. An advanced Captcha system is employed to reduce false positives and make sure that valid customers can reach your website.

Intrusion Detection and Protection System

More than 52% of hosting providers say that remote exploit is a top issue for their customers’ web servers. With IDS and IPS in Imunify360, you will be protected from inside out and outside in.

Imunify360 features an excellent Intrusion Prevention System (IPS) with a comprehensive collection of “deny” policy rules to quickly block all known attacks, especially those using a common or well-known exploit tool.

The Intrusion Detection System (IDS) provides excellent visibility of server security by monitoring server logs. It scans log files from all different angles and bans IPs that show malicious signs, such as password failures, potential exploits, etc. It helps protect your server from attacks and reports to the Imunify360 dashboard

advanced firewall

Malware Detection

malware scanning

Over 68% of hosting providers say that malware infection is a top issue for their customers’ web servers.

Imunify360 automatically scans file systems for malware injection and quarantines infected files.

Proactive Defense

Imunify360’s Proactive Defense (previously known as Sandboxing) protects websites against zero-day attacks – it stops even the malware that no scanner is able to detect. It identifies attacks on your Linux web servers in real time, then blocks potentially malicious executions automatically and with zero latency.

Proactive Defense uses a unique method of identifying security risks – it analyzes what scripts do rather than what is actually in the code.

malware defence

Rebootless Secure Kernel

Rebootless Secure Kernel powered by KernelCare is a component that keeps your server secure by automatically patching kernels without having to reboot the server. Its agent checks for new patches every four hours and automatically applies them to the running server without any performance impact. KernelCare keeps your kernel updated to help you avoid disastrous incidents.

Hardened PHP

Hardened PHP is a component that ensures your web server security by patching all PHP versions against known vulnerabilities, allowing you to run any version of PHP without having to update programs to accommodate newer versions.