A Web Application Firewall (WAF) extends the coverage of a typical networking firewall by examining the web requests themselves and blocking malicious users. As hackers are increasingly relying on HTTP attacks, a WAF is becoming an increasingly essential part of any critical business application.

Protect Against:

• Protocol Violations
  • Prevents common attacks by detecting protocol manipulation methods used to launch advanced attacks
  • Prevents resource abuse used to launch DOS and DDOS attacks
• Code Injection, including PHP, PERL, CGI, JSP and other server side scripts
  • The most complete malicious code detection and prevention methods and specially tuned to prevent false positives will thousands of web applications.
  • Prevents RFI attacks, obfuscated and cloaked code uploading methods and still allows known trusted applications to work.  No tuning required!
• SQL Injection Attacks
• HTTP Response Spliting
• Cross Site Scripting, including Universal PDF Cross Site Scripting
• Malicious Client Detection and Blocking
• Just In Time Patching
  • Our unique JITP system addresses vulnerabilities in applications that can not be patched by patching it for you!  Our JITP system will plug the holes in your applications so you can take the time needed to test updates, and yet still operate your system in a secure and safe manner.  JITPs are released daily when new vulnerabilities are discovered so you don't have to worry.
• Recursion Attacks
  • Prevents attacks from abusing file system bugs to access protected files, or areas of the system.
• Command injection
• Trojan, Backdoor, Spam Tool, Shell and Rootkit blocking
  • Detects thousands of different kinds of trojans to prevent already installed trojans, shells and other malicious applications from even running
• E-mail Injection
• XML Protection
• Web RPC Protection