Skip to main content
Back to all posts

WAF

Protect your web applications from threats like SQL Injection and XSS using our integrated Web Application Firewall. Learn how to configure the OWASP Core Rule Set, train your WAF, and leverage this crucial layer of defense for security and PCI compliance.

Latest post

Finally, a simple way to convert MaxMind GeoIP Database files to the legacy DAT format!

OWASP doesn't want you to have crAPI security

Here's what we learned from crAPI about API security, and how a Web Application Firewall (WAF) can help you take things one step further...

Security Application Management WAF

How to rate limit with HAProxy Stick Tables and the WAF

A while ago I was asked if it would be possible to apply some general rate limiting in HAProxy and the WAF, in order to help prevent DOS-style attacks on a customer's servers...

HAProxy WAF How-tos

ModSecurity DoS vulnerability (CVE-2021-42717)

All WAF vendors and services using ModSecurity are affected by this vulnerability (unless they have the vulnerable piece of code disabled, by chance)...

Open source Security WAF