cybersecurity

WAF as a Service - Web Application Firewall

Protect web apps, Mobile Apps and APIs

What is a Web Application Firewall (WAF) and why is it important for your business security

A Web Application Firewall (WAF) is a security solution that helps protect web applications from various online threats such as cross-site scripting (XSS), SQL injection, and other attacks. It works by monitoring and filtering incoming traffic to web applications, blocking malicious requests and preventing unauthorized access.

Today a WAF is used to protect web apps, APIs and business-to-business transactions, in such cases we often refer to it as Web Application and API Protection (WAAP).

WAF (or WAAP) is important for business security because web applications are frequently targeted by attackers seeking to exploit vulnerabilities and steal sensitive data. A WAF can help detect and prevent such attacks, thereby safeguarding customers’ personal information, financial data, and other critical assets. Additionally, WAFs can help companies comply with various industry standards and regulations related to data protection, such as PCI DSS and HIPAA. Overall, deploying a WAF can greatly enhance business security posture and protect brand reputation.

How does WAF as a Service work?

WAF as a Service is a cloud-based solution that provides web application firewall functionality without requiring to install or manage any hardware or software.

By using WAF as a Service, clients benefit from the advanced security capabilities of a web application firewall without having to worry about the complexities of managing and maintaining your own WAF infrastructure. This can save time, resources, and money while providing reliable, scalable, and effective protection for web applications and APIs.

Here is how it typically works:

Sign up for the WAF as a Service through a WAF provider and configure the DNS to point to the new WAF service instead of the web app

The WAF as a Service intercepts all incoming traffic to your app, using advanced filtering algorithms to analyze each request.

If the WAF as a Service detects any malicious requests, it blocks them from reaching the web app, preventing any potential attacks.

The WAF as a Service can also provide real-time alerts and notifications to help stay informed about potential attacks and suspicious activity.

The WAF as a Service can provide detailed reporting and analysis of website traffic, giving insights into potential vulnerabilities and threats that can be addressed proactively

Benefits of WAF as a Service for businesses

There are several benefits that a managed WAF as a Service can provide for businesses, including:

1. Enhanced Security

2. Easy Deployment

3. Scalability

4. Cost-Effective

5. Compliance

Types of Attacks WAF Protect Against

1. Cross-Site Scripting (XSS) attacks

XSS attacks attempt to inject malicious code into web pages to steal sensitive information or perform other malicious actions. WAF can detect and block such attacks by inspecting incoming traffic and filtering out any malicious payloads.

2. SQL Injection attacks

SQL injection attacks exploit vulnerabilities in web applications that allow attackers to execute arbitrary SQL commands, potentially leading to data theft or destruction. WAF can detect and block such attacks by analyzing incoming traffic and blocking any suspicious SQL commands.

3. Cross-Site Request Forgery (CSRF) attacks

CSRF attacks attempt to trick users into performing actions on a website that they did not intend to perform. WAF can detect and block such attacks by inspecting the request headers and looking for any inconsistencies.

4. Distributed Denial of Service (DDoS) attacks

DDoS attacks attempt to overwhelm a website with traffic, making it unavailable to legitimate users. WAF can detect and block such attacks by analyzing incoming traffic and filtering out any suspicious traffic patterns.

5. File Inclusion attacks

File inclusion attacks exploit vulnerabilities in web applications that allow attackers to include files from outside the web root directory, potentially leading to unauthorized access or data theft. WAF can detect and block such attacks by inspecting incoming traffic and blocking any attempts to include files from outside the web root directory.

managed security services - managed waf / waap

Our WAF Services

EXEO offers a managed WAF service. These web application firewall waf security services are managed and maintained by the Exeo Managed Security Services (MSS) team.

We support the following web application firewall as a service vendors.

Cloudflare WAF

Suitable for any client and any app, includes a CDN and requires the reconfiguration of name servers and hosting the DNS records.

Google Cloud Armor

Armor is designed to protect apps hosted on Google Cloud Platform and in Google Kubernetes Engine.

Azure WAF

Protecting apps hosted in Microsoft Azure and Azure Kubernetes Service

As a Managed Security Service Provider (MSSP), Exeo offers a range of services to manage the WAF for its clients. The services we provide for our clients are as follows:

Administration & Configuration

Helping clients deploy and configure their WAF to meet their specific security requirements. This includes setting up rules to block known threats and creating custom rules to protect against specific threats.

Threat Detection and Response

Exeo monitors incoming traffic to detect and respond to potential threats in real-time. It also investigates and responds to security incidents, providing clients with a detailed report of the incident and recommended remediation actions.

24/7 Monitoring and Support

24/7 monitoring and support to ensure that the WAF service is always functioning optimally. This includes real-time monitoring, incident response, and ongoing maintenance and updates.

Cookie	Duration	Description
__cfduid	1 month	The cookie is used by CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	1 year	This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".
cookielawinfo-checkbox-functional	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	1 year	No description
cookielawinfo-checkbox-performance	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
pll_language	1 year	The cookie stores the language code of the last browsed page.

Cookie	Duration	Description
_clsk		Microsoft Clarity analytics application
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag_UA_44752404_1	1 minute	No description
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
_lfa	2 years	This cookie is set by the provider Leadfeeder. This cookie is used for identifying the IP address of devices visiting the website. The cookie collects information such as IP addresses, time spent on website and page requests for the visits.This collected information is used for retargeting of multiple users routing from the same IP address.
of.tracking	1 year
ofs
SL_C_23361dd035530_KEY		Outfunnel Campaign
SL_C_23361dd035530_SID		Outfunnel Campaign
SL_C_23361dd035530_VID		Outfunnel Campaign
vuid	2 years	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.

Cookie	Duration	Description
ANONCHK	10 minutes	This cookie is used for storing the session ID for a user. This cookie ensures that clicks from advertisement on the Bing search engine are verified and it is used for reporting purposes and for personalization.
MUID	1 year 24 days	Used by Microsoft as a unique identifier. The cookie is set by embedded Microsoft scripts. The purpose of this cookie is to synchronize the ID across many different Microsoft domains to enable user tracking.

Cookie	Duration	Description
_clck	1 year	No description
cf_ob_info		No description
cf_use_ob		No description
CLID	1 year	No description
player		This cookie is used by Vimeo. This cookie is used to save the user's preferences when playing embedded videos from Vimeo.
SM	session	No description
SRM_B	1 year 24 days	No description