Posted by alex on 12 Mar, 2020
Source Medium article.
Many teams consider use of Web Application Firewalls (WAFs) as a best practice or a compliance requirement when implementing web applications. All firewalls are used to control and monitor traffic. A WAF is a specific firewall that is designed to identify and prevent attacks from web application traffic. The expectation is that the firewall will prevent command injection attacks, cross-site scripting attacks, protocol violations, and other common attacks against web applications.
Are the cloud WAFs any good in blocking common web application attacks? We decided to find out and the results were surprising.