AWS WAF
Definition
AWS WAF (Web Application Firewall) is a security service provided by Amazon Web Services that helps protect web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. It allows users to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting (XSS), and can be integrated with other AWS services like Amazon CloudFront, Application Load Balancer, and API Gateway to provide a comprehensive security solution.
Secure Settings Example
{
"Name": "SecureWAFRule",
"MetricName": "SecureWAFRuleMetric",
"DefaultAction": {
"Block": {}
},
"Rules": [
{
"Name": "SQLInjectionRule",
"Priority": 1,
"Statement": {
"SqliMatchStatement": {
"FieldToMatch": {
"UriPath": {}
},
"TextTransformations": [
{
"Priority": 0,
"Type": "URL_DECODE"
}
]
}
},
"Action": {
"Block": {}
}
},
{
"Name": "XSSRule",
"Priority": 2,
"Statement": {
"XssMatchStatement": {
"FieldToMatch": {
"Body": {}
},
"TextTransformations": [
{
"Priority": 0,
"Type": "HTML_ENTITY_DECODE"
}
]
}
},
"Action": {
"Block": {}
}
}
]
}
Insecure Settings Example
{
"Name": "InsecureWAFRule",
"MetricName": "InsecureWAFRuleMetric",
"DefaultAction": {
"Allow": {}
},
"Rules": [
{
"Name": "SQLInjectionRule",
"Priority": 1,
"Statement": {
"SqliMatchStatement": {
"FieldToMatch": {
"UriPath": {}
},
"TextTransformations": [
{
"Priority": 0,
"Type": "NONE"
}
]
}
},
"Action": {
"Allow": {}
}
}
]
}