Blog Post

Azure Network Security Blog
3 MIN READ

Microsoft announces new collaboration with MazeBolt RADAR™ DDoS testing

Amir_Dahan's avatar
Amir_Dahan
Icon for Microsoft rankMicrosoft
Apr 11, 2024

As we highlighted in our report on recent attack trends during the last holiday season, Distributed Denial-of-Service (DDoS) attacks are one of the main security concerns today. Any endpoint that is reachable through the internet, whether in the cloud or on-premises, can be a target of a DDoS attack. Having a solid incident management response plan requires planning and preparation for a DDoS attack, and DDoS attack simulations are an essential part of this plan.

Microsoft is pleased to introduce a new collaboration with MazeBolt, giving our customers a new option for DDoS simulation testing. With the unique MazeBolt RADAR™ platform, you can now non-disruptively and continuously validate your entire external attack surface for DDoS vulnerabilities without any interruption to your production environment. RADAR™ assists organizations in identifying and mitigating DDoS vulnerabilities using Azure DDoS protection services, giving you the assurance and visibility that the Azure DDoS protections deployed are tuned to be fully automated for your specific needs and prevent unnecessary reactive downtime.

 

Non-disruptive DDoS Attack Simulations with MazeBolt RADAR™

Even the best DDoS mitigation solutions can have misconfigurations, which lead to vulnerabilities in protections, an attacker can then use these vulnerabilities to inflict damaging downtime on online services.

The MazeBolt RADAR platform uses patented non-disruptive DDoS attack simulations that can cover an organization's entire attack surface. Due to the underlying technology RADAR is built upon, the platform takes DDoS attack simulation to a new level by automatically and continuously using thousands of attack simulations (of all known attack vectors) to identify and enable the elimination of DDoS vulnerabilities before a damaging attack interrupts business continuity.

Once RADAR identifies DDoS vulnerabilities and remediation has taken place with the relevant mitigation, RADAR then re-validates those specific targets and online services to ensure those vulnerabilities have been eliminated.

DDoS simulation results and reporting are provided in a self-service management dashboard in the RADAR platform.

Available reporting highlights the current gaps in DDoS protections across OSI layers, and the level of vulnerability, from Vulnerable, Partially Protected to Protected states.

 

Reporting features

Real-time simulation view – DDoS attack simulations can be viewed in real-time. RADAR is a non-disruptive DDoS attack simulator and is fully automated. A prioritized list of the main attack vectors the attack surface is vulnerable to are used to establish an efficient remediation plan.

 

Standard RADAR view

 

Real time interactive analytics – Real time a high-level view on DDoS vulnerability level, simulation results filtering and analysis, metrics for month-to-month analysis.

On-demand reports – Customers can generate on-demand vulnerability reports in PDF format based on various filters.

Quarterly executive summary – MazeBolt account management provides quarterly reports in PDF format.

 

Other main features

Multi-tenant management – Manage and view multiple regions through a single UI. The platform management allows you to view and manage multiple deployments through a single UI and integrate your existing RADAR deployment to Azure while maintaining the same management UI.

 

Multi-tenant RADAR view

 

SIEM integration – Allow integration with your preferred SIEM solution to gain alerts through RADAR attack simulations times and results.

Two factor authentication – Increased security enable two factor authentication for accessing the RADAR platform and reporting.

 

Azure DDoS simulation testing policy

MazeBolt's RADAR platform is deployed within Azure. You can only simulate attacks against Azure-hosted public IP addresses which belong to an Azure subscription of your own and will be validated before testing. Additionally, to run DDoS simulation with RADAR™, any target public IP addresses must be protected under Azure DDoS Protection SKU. MazeBolt services are sold separately from Azure DDoS Protection and can be purchased directly through MazeBolt.

You may only simulate attacks using our approved testing partners:

 

Learn more

MazeBolt: The only source of truth for DDoS readiness

Azure DDoS Protection simulation testing partners: Azure DDoS Protection simulation testing

Microsoft penetration testing guidelines: Penetration testing

Azure DDoS Protection Standard product page

Azure DDoS Protection Standard documentation

DDoS Protection best practices

Updated Apr 11, 2024
Version 1.0
  • Eyal_'s avatar
    Eyal_
    Copper Contributor

    Brilliant.

    Ongoing & Continues testing is the best practice.

    Due to the RADAR Non-Disruptive unique ability.

    It is possible to map an entire DDoS attack surface without downtime and make sure you are resistant to DDoS damaging attacks before they even occur

     

  • AmirHarel's avatar
    AmirHarel
    Copper Contributor

    Big news to Azure users!
    Radar will allow you to easily pin point the holes in your DDOS mitigation systems, fix them and verify you're safe, all without causing any disruption to your online apps, websites, WebApp, CDN, etc.

    Highly recommended 

     

     

  • SagiMB's avatar
    SagiMB
    Copper Contributor

    Great article!
    Looking forward to hearing more about this collaboration! 

  • YogevS's avatar
    YogevS
    Copper Contributor

    Great News !

    This is a significant collaboration that will benefit many of Microsoft's users.

  • Drjo1990's avatar
    Drjo1990
    Copper Contributor

    Fantastic. A company finally able to deal with the severity Of DDoS attacks. 
    A great collaboration of brilliant minds.