Abstract: A client analyzes requests for network resources to determine an IP address associated with the request, such as a destination IP address of a network packet. The client device selectively routes the request and other traffic associated with the IP address. The client device establishes a tunnel or other direct connection with a remote server. Network traffic can be selectively routed to the destination IP address associated with a resource request, or to the remote server based on the destination IP address associated with the request. The system can route client network requests to the remote server based on a category or other information associated with the destination IP address. Network packets associated with malicious or suspicious IP addresses, for example, may be routed to the remote server for performance of security features, while packets associated with other IP addresses may be directly routed to their target destination.

Abstract: A client analyzes requests for network resources to determine an IP address associated with the request, such as a destination IP address of a network packet. The client device selectively routes the request and other traffic associated with the IP address. The client device establishes a tunnel or other direct connection with a remote server. Network traffic can be selectively routed to the destination IP address associated with a resource request, or to the remote server based on the destination IP address associated with the request. The system can route client network requests to the remote server based on a category or other information associated with the destination IP address. Network packets associated with malicious or suspicious IP addresses, for example, may be routed to the remote server for performance of security features, while packets associated with other IP addresses may be directly routed to their target destination.

Abstract: Described herein is a method and system for prevention of personal computing attacks, such as JavaScript Objection Notation (JSON) attacks. An intermediary device is deployed between a plurality of clients and servers. A firewall executes on the intermediary device. A client sends a request to the server and the server sends a response to the request. The intermediary device intercepts the response and identifies that the response may contain possibly harmful content. The application firewall parses the content of the response and determines whether it contains any harmful content. If it does, the application firewall blocks the response from being sent to its destination. Additionally, the method and system can provide other security checks, such as content hijacking protection and data validation.

Abstract: The present solution described herein is directed towards systems and methods to prevent cross-site request forgeries based on web form verification using unique identifiers. The present solution tags each form from a server that is served out in the response with a unique and unpredictable identifier. When the form is posted, the present solution enforces that the identifier being returned is the same as the one that was served out to the user. This prevents malicious unauthorized third party users from submitting a form on a user's behalf since they cannot guess the value of this unique identifier that was inserted.

Abstract: The present solution described herein is directed towards systems and methods to prevent cross-site request forgeries based on web form verification using unique identifiers. The present solution tags each form from a server that is served out in the response with a unique and unpredictable identifier. When the form is posted, the present solution enforces that the identifier being returned is the same as the one that was served out to the user. This prevents malicious unauthorized third party users from submitting a form on a user's behalf since they cannot guess the value of this unique identifier that was inserted.

Abstract: Described herein is a method and system for prevention of personal computing attacks, such as JavaScript Objection Notation (JSON) attacks. An intermediary device is deployed between a plurality of clients and servers. A firewall executes on the intermediary device. A client sends a request to the server and the server sends a response to the request. The intermediary device intercepts the response and identifies that the response may contain possibly harmful content. The application firewall parses the content of the response and determines whether it contains any harmful content. If it does, the application firewall blocks the response from being sent to its destination. Additionally, the method and system can provide other security checks, such as content hijacking protection and data validation.