With an extensive preset reputation database, WAF defends against Open Web Application Security Project (OWASP) top 10 threats, vulnerability exploits, web shells, and other threats. WAF supports PCI DSS and PCI 3DS compliance certification check. You can select the one best fits your business needs. TLS has three versions (TLS v1.0, TLS v1.1, and TLS v1.2) and five cipher suites. PCI DSS/PCI 3DS Compliance Certification and TLS Checks If the domain name has not been registered, it cannot be added to WAF. With cloud WAF instance, when you add a domain name to WAF, WAF will check whether the domain name is registered. WAF supports the WebSocket protocol, which is enabled by default. It examines HTTP and HTTPS requests to detect and block attacks, such as Structure Query Language (SQL) injections, cross-site scripting (XSS), web shell upload, command or code injections, file inclusion, sensitive file access, third-party vulnerability exploits, CC attacks, malicious crawlers, and cross-site request forgery (CSRF). WAF keeps applications stable and secure. Protection of IP Addresses and Domain Names (Wildcard, Top-level, and Level-2 Domain Names) WAF makes it easier for you to handle web security risks. You can add either domain names or IP addresses to WAF. It examines all HTTP and HTTPS requests to detect and block the following attacks: Structured Query Language (SQL) injection, cross-site scripting (XSS), web shells, command and code injections, file inclusion, sensitive file access, third-party vulnerability exploits, Challenge Collapsar (CC) attacks, malicious crawlers, and cross-site request forgery (CSRF). Web Application Firewall (WAF) keeps web services stable and secure.
0 kommentar(er)
