Web Application Firewall (WAF) Software

AWS WAF helps you protect against common web exploits and bots that can affect availability, compromise security, or consume excessive resources. AWS WAF is a web application firewall that helps protect web applications from attacks by allowing you to configure rules that allow, block, or monitor (count) web requests based on conditions that you define. These conditions include IP addresses, HTTP headers, HTTP body, URI strings, SQL injection and cross-site scripting.

Oracle Cloud Infrastructure Web Application Firewall (WAF) is a cloud-based, PCI-compliant, global security service that protects applications from malicious and unwanted internet traffic. Oracle Cloud Infrastructure WAF can protect any internet-facing endpoint, providing consistent rule enforcement across a customer's applications. The Oracle Cloud Infrastructure WAF should be considered for any internet-facing web application or HTTP-based API.

F5 Distributed Cloud WAF is a next-gen SaaS-based web application firewall that provides signature and behavioral-based threat detection to protect applications wherever they are deployed. F5 Distributed Cloud WAF combines signature and robust behavior-based protection for web applications. It acts as an intermediate proxy to inspect app requests and responses to block and mitigate a broad spectrum of risks stemming from the OWASP Top 10, threat campaigns, malicious users, layer 7 DDoS threats, bots and automated attacks, and more.

App & API Protector is a single solution for web application firewall, bot mitigation, API security, and DDoS, including Layer 7 DDoS protection. Quickly identify vulnerabilities and mitigate threats across the most complicated web and API architectures. App & API Protector is easy to implement and use, with automatic security updates and holistic visibility into traffic and attacks.

Azure Web Application Firewall is a cloud-native web application firewall (WAF) service that provides powerful protection for web apps. Azure Web Application Firewall protects web apps from common web-hacking techniques such as SQL injection and security vulnerabilities such as cross-site scripting. Deploy the service in minutes to get complete visibility into your environment and block malicious attacks.

Sucuri offers complete website security, protection & monitoring. Sucuri scans your website for malware, hacks, and blacklist status and delivers continuous website monitoring with alerts and daily updates. Gain visibility and security with Sucuri.

The Fastly Next-Gen WAF provides advanced protection for your applications, APIs, and microservices, wherever they live, from a single unified solution. It provides modern web app and API security anywhere and takes a fundamentally different approach to application security, enabling increased protection without tuning, deployment anywhere you need, and industry-leading time-to-value.

The Cloudflare WAF uses threat intelligence and machine learning powered by platform intelligence from the Cloudflare connectivity cloud to stop the newest threats, including zero-days. It runs on the Cloudflare global network and sits in front of web applications to stop a wide range of real-time attacks using powerful rulesets, advanced rate limiting, exposed credential checks, uploaded content scanning, and other security measures.

Barracuda Application Protection is an integrated platform that brings a comprehensive set of interoperable capabilities together to ensure complete application security. Barracuda Application Protection combines full Web Application and API Protection (WAAP) functionality with a complete set of advanced security services and solutions that protect your applications against today’s multiplying threats.

Web application attacks prevent important transactions and steal sensitive data. Imperva Web Application Firewall (WAF) stops these attacks with near-zero false positives and a global SOC to ensure your organization is protected from the latest attacks minutes after they are discovered in the wild.