Managed rules for AWS Web Application Firewall

Cyber Security Cloud Managed Rules are designed to mitigate and minimize vulnerabilities, including all those on OWASP Top 10 Threats list. With the HighSecurity OWASP Set, you can start protecting your web applications right away with a low false-positive rate and a higher defense capability. Learn more

Bot Protections Rules is a partner managed rule group for AWS WAF that stops a broad range of malicious bots activities such as vulnerability scanners, web scrapers, DDoS tools, and forum spam tools. Learn more

F5 Web Exploits OWASP Rules for AWS WAF, provides protection against web attacks that are part of the OWASP Top 10, such as: SQLi, XSS, command injection, No-SQLi injection, path traversal, and predictable resource. Learn more

CVE Rules for AWS WAF provides protection for high profile CVEs targeting the following systems: Apache, Apache Struts, Bash, Elasticsearch, IIS, JBoss, JSP, Java, Joomla, MySQL, Node.js, PHP, PHPMyAdmin, Perl, Ruby On Rails, and WordPress. Learn more

Protects against API attacks, web attacks (such as XML external entity attacks) and server side request forgery. The rule set includes support for XML and JSON payloads, and common web API frameworks. Learn more

Fortinet WAF RuleGroups are based on the FortiWeb web application firewall security service signatures, and are updated on a regular basis to include the latest threat information from FortiGuard Labs. The General and Known Exploits RuleGroup detects common and advanced OWASP Top 10 threats including numerous Injection attacks, URL Redirects, HTTP Response Splitting, Database Disclosure vulnerabilities and other Common Vulnerabilities and Exposures (CVEs). Please see our other RuleGroups for additional protections. Learn more

Fortinet WAF RuleGroups are based on the FortiWeb web application firewall security service signatures, and are updated on a regular basis to include the latest threat information from FortiGuard Labs. The Malicious Bots RuleGroup analyzes requests and blocks known content scrapers, spiders looking for vulnerabilities, and other unwanted automated clients that OWASP has identified as risks to web applications. Please see our other RuleGroups for additional protections. Learn more

Fortinet WAF RuleGroups are based on the FortiWeb web application firewall security service signatures, and are updated on a regular basis to include the latest threat information from FortiGuard Labs. The Complete OWASP Top 10 RuleGroup combines Fortinet’s other AWS WAF RuleGroups into one comprehensive package that includes the SQLi/XSS, General and Known Exploits, and Malicious Bots RuleGroups. Learn more

Imperva's Managed Rules for IP Reputation allows you to take a proactive approach to security by providing an extensive IP whitelist/blacklist which is regularly monitored and updated. Imperva's reputation feed leverages crowd-sourcing from aggregated attack data to update its list with newly detected malicious sources. Learn more

Use this RuleGroup to protect WebServers including the Apache Suite (Apache Httpd, Apache Struts, Apache Tomcat) and Nginx from known vulnerabilities and to help meet PCI DSS requirements. Trend Microdelivers proactive global threat intelligence against zero-hour threats to help ensure that you are protected. Trend Micro integrates with key AWS Services and offers additional Amazon EC2 protection using Trend Micro Deep Security. Trend Micro’s Managed Rules for AWS WAF are designed to further augment the protection AWS WAF already offers for your applications and data in the cloud. Learn more

Use this RuleGroup to protect common CMS and EMS including WordPress, Joomla and Drupal from known vulnerabilities and to help meet PCI DSS requirements. Trend Micro delivers proactive global threat intelligence against zero-hour threats to help ensure that you are protected. Trend Micro integrates with key AWS Services and offers EC2 protection using Deep Security for AWS. Trend Micro’s Managed Rules for AWS WAF are designed to further augment the protection AWS WAF already offers for your applications and data in the cloud. Learn more

Select Trustwave SpiderLabs ModSecurity virtual patches to provide additional support for your web applications running AWS WAF. As the threat landscape evolves, Trustwave SpiderLabs will continue to provide new virtual patches. The virtual patches will allow you to reduce the development costs of your web applications by enabling you to prevent vulnerabilities from being exposed to the internet. Contains hundreds of virtual patches to protect technologies such as BigTree CMS, couponPHP CMS, and DotCMS. Learn more

Select Trustwave SpiderLabs ModSecurity virtual patches to provide additional support for your web applications running AWS WAF. As the threat landscape evolves, Trustwave SpiderLabs will continue to provide new virtual patches. The virtual patches will allow you to reduce the development costs of your web applications by enabling you to prevent vulnerabilities from being exposed to the internet. Our Content Management System (CMS) virtual patches package, provides critical patches to protect your customers and your reputation. It contains hundreds of virtual patches to protect CMS platforms such as Drupal, Joomla, and WordPress. Learn more