Intrusion Prevention Technology and Anti- Spyware Protection:
Blink V 2.0 performs anti-spyware protection, network traffic reconstruction and protocol analysis and is able to detect and block ‘zero-day’ attacks that bypass standard signature checking solutions. Blink is also able to detect and block of known attacks using pattern matching analysis.

For the added protection of individual digital assets, Blink includes the following features:

• Anti-Spyware Protection - Real time Malicious Code Protection: Blink will actively block malware instances from being loaded into memory and to give the option to quarantine or remove the suspected code. This is done by checking processes against a CRC (cyclical redundant check) database of spyware methods.
• Identify Theft Protection:Blink is now able to detect and classify phlishing attempts made via the POP3, IMAP or HTTP protocols.
• Malicious Application Control Prevention protects against Application Hijacking via DLL control hooking
• Application Policy Control prevents abusive user behavior within applications, such as downloading files via p2p or Instant Messenger applications
• Buffer Overflow Protection protects against known and unknown buffer overflow attacks against network applications
• Non-Signature Based Attack Prevention detects and blocks attacks without the need or use of attack signatures. This translates into complete protection, even when an attack is circulating, but the vendor has not yet created signatures or patches. This also removes the administrative burden associated with updating signatures files
• Inbound and Outbound Port Blocking: Blink controls all aspects of network traffic including all inbound and outbound connections. Blink also controls traffic based on protocol, port, and communicating host address
• Configurable rules: Blink’s policies are customizable by the administrator and can be tailored to each particular worker’s access or configuration requirement
• Operating System Hardening: Blink acts as Windows hardening solution, preventing attacks from modifying critical OS binary files or configuration settings

System and Application Firewall Technology
Performing analysis of each packet of network traffic entering the system, Blink is able to allow or deny traffic based on a set of predetermined firewall rules. Blink also monitors the source of network traffic in real time and will only allow traffic only from authorized applications.

Non-Intrusive Protocol Analysis
Blink’s non-intrusive protocol analysis technology examines network traffic before it reaches the application layer, preventing malicious activity before it is allowed to execute. This allows Blink to remain non-intrusive and support business continuity, unlike other end-point solutions, which resort to stopping services or processes as a means of protection.

Local Vulnerability Assessment Scanning Engine
Blink’s local vulnerability assessment engine is based on eEye’s award-winning Retina Network Scanner technology, the industry standard for vulnerability assessment. The Retina scanning engine performs non-intrusive system-level scanning and provides a list of recommended remediation actions.

Suitable For Any Size Enterprise
Through the Blink Security Console, users can secure assets throughout their enterprise - without end-user intervention - easily deploying, administering and managing their Blink environment from a central management console.

• Network Asset Discovery -Leveraging the Blink Console, system administrators are able to discover network assets via various methods (Active Directory, ARP, NetBIOS) and create logical machine groupings according to such categories as operating system, machine type or business group
• Centralized Policy Management - Security administrators can create policies to be implemented to one, many or all of the Blink agents in the environment. This allows for the enforcement of internal corporate policies such as application version control, application usage and configuration standards. All policies can be centrally managed through Blink Security Console
• Integrates with the REM Security Management Console - As with all eEye products, Blink seamlessly integrates with the REM console for advanced reporting and analysis under REM’s workflow approach to vulnerability management

Screenshots

Datasheets

• Blink Data Sheet

• What's new in version 2.0

• Spyware Overview

• Phishing activity Report

• Blink Presentation

Product Requirements

- OS Workstation: Windows NT 4 (SP6), Windows 2000 (SP3) or Windows XP

- OS Server: Windows NT Server, Windows 2000 Server, Windows 2000 Advanced Server or Windows

Server 2003

- 233 MHz or higher Intel Pentium II or compatible processor

- 128 MB of RAM

- 40 MB of free disk space

- OS Workstation: Windows 2000 (SP3) or Windows XP

- OS Server: Windows 2000 Server, Windows 2000 Advanced Server or Windows Server 2003

- 233 MHz or higher Intel Pentium II or compatible processor

- 256 MB RAM

- 50 MB hard-disk space required for installation

- .Net Framework 1.1

Technical Overview

To support large-scale deployments, eEye provides a comprehensive management infrastructure suitable for use across large, distributed networks. Through Blink's Security Console, administrators can perform comprehensive asset discovery, deploy Blink agents throughout an enterprise, and administer customized configuration settings with no impact to end-users. Additionally, Blink seamlessly integrates with Active Directory as a means to manage the identities and relationships that make up network environments, further leveraging enterprise investments.

Blink, when combined with the REM™ Security Management Console, delivers a unified management interface that allows security professionals to centrally collect, analyze, monitor and report on their enterprise's security posture. This powerful solution provides unified workflow capabilities to efficiently recognize network threats and attempted attacks, so they can be prevented and efficiently mitigated in a collaborative working environment.