AWS Web Application Firewall Logo
AWS Web Application Firewall Logo
Amazon

AWS Web Application Firewall

Composite Score
8.1 /10
CX Score
8.4 /10
Category
AWS Web Application Firewall
8.1 /10

What is AWS Web Application Firewall?

AWS WAF helps you protect against common web exploits and bots that can affect availability, compromise security, or consume excessive resources. AWS WAF is a web application firewall that helps protect web applications from attacks by allowing you to configure rules that allow, block, or monitor (count) web requests based on conditions that you define. These conditions include IP addresses, HTTP headers, HTTP body, URI strings, SQL injection and cross-site scripting.

Company Details


Need Assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Get Assistance

AWS Web Application Firewall Ratings

Real user data aggregated to summarize the product performance and customer experience.

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

91 Likeliness to Recommend

100 Plan to Renew

86 Satisfaction of Cost Relative to Value


{y}
{name}

Emotional Footprint Overview

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

+95 Net Emotional Footprint

The emotional sentiment held by end users of the software based on their experience with the vendor. Responses are captured on an eight-point scale.

How much do users love AWS Web Application Firewall?

0% Negative
6% Neutral
94% Positive

Pros

  • Helps Innovate
  • Reliable
  • Trustworthy
  • Efficient Service

Feature Ratings

Average 83

OWASP Top 10

86

API Security Testing

86

Risk Analytics

86

Dynamic Application Policy Generation

83

API Traffic Analysis

83

Reporting and Analytics

82

Risk Mitigation

77

Vendor Capability Ratings

Average 83

Quality of Features

90

Ease of Implementation

89

Breadth of Features

88

Business Value Created

84

Ease of IT Administration

83

Product Strategy and Rate of Improvement

81

Usability and Intuitiveness

79

Availability and Quality of Training

78

Ease of Data Integration

78

Ease of Customization

78

Vendor Support

77

AWS Web Application Firewall Reviews

SHAHRUKH K.

  • Role: Information Technology
  • Industry: Technology
  • Involvement: IT Leader or Manager
Validated Review
Verified Reviewer

Submitted Jan 2023

This was safe and secure and very competitive.

Likeliness to Recommend

8 /10

What differentiates AWS Web Application Firewall from other similar products?

AWS Web Application Firewall (WAF) is a service that allows you to protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. Some of the key features that differentiate AWS WAF from other similar products include: Integration with other AWS services: AWS WAF can be easily integrated with other AWS services such as Amazon CloudFront, Amazon API Gateway, and Application Load Balancers, making it easy to protect your web applications from the edge.

What is your favorite aspect of this product?

Cloud-based: AWS WAF is a cloud-based service, which means that you don't need to worry about managing hardware or software, and can easily scale your WAF protection as your needs change. Additionally, AWS WAF also integrates with other AWS services such as Amazon CloudWatch and AWS Shield, which provide additional security and monitoring capabilities.

What do you dislike most about this product?

ome latency to web requests. This is because all requests must be processed by the WAF service before they reach the web application, which can cause some delay. Another potential disadvantage is that it can be difficult to configure and manage the WAF rules, especially for users who are not familiar with web application security. In order to effectively use the service, users may need to have a good understanding of common web exploits and how to configure rules to detect and prevent them

What recommendations would you give to someone considering this product?

If you are considering using AWS Web Application Firewall (WAF) to protect your web applications, here are some recommendations to keep in mind: Understand your security needs: Before using the service, it is important to understand your specific security needs and how they align with the capabilities of the WAF service. Understand what type of attacks you want to protect your web application from and how WAF can help you do that.

Pros

  • Reliable
  • Performance Enhancing
  • Trustworthy
  • Efficient Service

Louis R.

  • Role: Human Resources
  • Industry: Food and Beverage
  • Involvement: End User of Application
Validated Review
Verified Reviewer

Submitted Dec 2022

Proved to be a great addition in our organization

Likeliness to Recommend

10 /10

What differentiates AWS Web Application Firewall from other similar products?

AWS WAF is a web application firewall that assists in defending online applications against frequent web exploits that can damage uptime, jeopardize security, or use up unnecessary resources. There is only one place to go therefore no more work is required. AWS WAF can handle practically everything.

What is your favorite aspect of this product?

The WAF by AWS is a crucial tool that may provide an additional layer of security against DDOS attacks and other threats that might destroy your system at any time. The rules and limitations to block nations and view logs are excellent. The biggest feature of this application is that it is simple to use and constantly updated with fresh signatures for zero days.

What do you dislike most about this product?

Despite being simpler to set up, it doesn't provide complete security. Companies in the payment gateway industry, for instance, won't benefit from waf because the minimum threshold per source-based IP is 100, which means that if a specific IP attempts 100 times in 5 minutes, it will be blocked. As hackers increasingly use multiple IP addresses, this rule becomes ineffective.

What recommendations would you give to someone considering this product?

We have been utilizing WAF and advising it to various clients. Multiple managed protection plans are offered by WAF, and third-party services are integrated. The finest feature is how simple it is to configure and interact with a middleware, API gateway, or CloudFront. Additionally, it is easy to use.

Pros

  • Continually Improving Product
  • Reliable
  • Performance Enhancing
  • Enables Productivity

Mark S.

  • Role: Information Technology
  • Industry: Technology
  • Involvement: End User of Application
Validated Review
Verified Reviewer

Submitted Dec 2022

One stop solution

Likeliness to Recommend

10 /10

What differentiates AWS Web Application Firewall from other similar products?

Amazon Web Services provides AWS WAF, which has customisable rules to stop known harmful behaviors and an API for developing and deploying online security rules, to protect web applications against malicious behavior that could impair their functionality and performance. l. A lot of functions offered by WAF will secure your applications.

What is your favorite aspect of this product?

It is simple to connect to any CDN or Cloud front, and by utilizing web ACL, we can design infinitely scalable, personalized, and conditional rules that will allow web application hosting material be protected from web attacks. Protection from Web-based attacks and harmful payloads created at the application layer is offered by WAF.

What do you dislike most about this product?

Shield Advanced is an alternative, but there are other important third-party solutions like Cloudflare that offer superior DDoS protection, and I would like aws to improve their waf effectiveness. Once the rules are set up, it can sometimes take some time until they go live, especially if you add more rules.

What recommendations would you give to someone considering this product?

To ensure that your system is protected from external threats or significant attacks, many changes can be carried out, such as rate limiter rules AWS managed rules, or custom rules. It offers the infrastructure fundamental protection against anticipated threats like cross-site scripting assaults, SQL injection attacks, simple DDoS attacks, blocking already blacklisted ips, etc.

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing