The system from Mykonos, designed to watch hackers profiling web applications, tells administrators where they are, what their location is, and how much skill they have. Targeting financial services and insurance companies, healthcare companies, e-commerce companies, government entities, and other high-profile targets of web-based hacking attempts, the Mykonos Security Appliance offers more than conventional web application firewalls, Mykonos said.
Web application firewalls use rules-based policies that are hard to configure, Mykonos believes. The company argued that they fail to protect against client-side code, and that they fail to respond in real-time with counter measures to protect systems.
According to Mykonos, its appliance analyzes code as it is delivered, detecting potentially malicious activity as it happens, and deduces how sophisticated it is. It then attempts to confuse the hacker with counter measures, including fake responses that put them on the wrong trail. It also identifies the hacker, gathering personal information and enabling administrators to hand the case over to law enforcement. However, it isn't clear how that identification is done, or how it might find the true location of a hacker coming in via the Tor network or via a compromised machine.