• Home
  • Imperva DDoS vs. Imperva Web Application Firewall

Imperva DDoS vs Imperva Web Application Firewall comparison

Cancel
You must select at least 2 products to compare!
Imperva Logo
Imperva DDoS
Read 74 Imperva DDoS reviews
2,665 views|2,250 comparisons
94% willing to recommend
Imperva Logo
Imperva Web Application Firewall
Read 46 Imperva Web Application Firewall reviews
7,938 views|6,351 comparisons
97% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Imperva DDoS vs. Imperva Web Application Firewall
March 2024
Executive Summary
Updated on Sep 18, 2022

We compared Imperva DDoS and Imperva Web Application Firewall based on our users’ reviews in four categories. After reading the collected data, you can find our conclusion below.

  • Ease of Deployment: Users of both solutions find them easy to deploy.
  • Features: Users of both products feel that they are fairly stable and fairly scalable.

    Users of Imperva DDoS find its ease of use to be one of its most valuable features. However, they feel it could be more flexible in terms of its customization options.

    Reviewers of Imperva Web Application Firewall feel that their security features are effective in protecting their organizations from digital threats. However, they feel it can be difficult to use.
  • Pricing: Users of both solutions find them to be expensive.
  • Service and Support: For the most part, users of both products find their technical support to be effective.

Comparison of Results: Based on the parameters we compared, Imperva DDoS seems to be the superior solution. Our reviewers feel that because Imperva Web Application Firewall can be difficult to use, Imperva DDoS is a better investment.

To learn more, read our detailed Imperva DDoS vs. Imperva Web Application Firewall Report (Updated: March 2024).
Download the complete report
771,157 professionals have used our research since 2012.
Featured Review
OLUWASEGUN ADERIBIGBE
Researched Imperva Web Application Firewall but chose Imperva DDoS: Stops web attacks from denying services and endangering the security of sensitive data
Anonymous User
Stops bot attacks completely and has easy deployment
We were facing issues related to web servers and OWASP Top 10. We had bots rather than human traffic. We went with Imperva for a single-stack... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The solution has a very good interface.""Its unique interface for managing security performance and ease of use are the most valuable features of this solution.""We have peace of mind that nobody will use malware on us or try to hack our website.""Imperva DDoS is fairly stable, and its availability is quite high.""It is a stable solution.""Integration with IBM AS/400 and Db2 is okay.""Scalability is pretty easy on the base platform. You just add another, and you're ready to go.""Real-time monitoring is also a great tool, as you may watch several parameters in real time."

More Imperva DDoS Pros →

"The most valuable features of the Imperva Web Application Firewall are DDoS, malware, and the other malicious threat prevention it provides. Additionally, third-party integration is available. You can forward the log for further analysis.""We can prevent attacks or issues even before they happen.""The features I have found most valuable with Imperva Web Application Firewall are account takeover protection, advanced bot protection, and API security.""The most valuable features of Imperva Web Application Firewall are the monitoring of databases and the dashboards are easy to understand.""If you are using the appliance as opposed to the virtual deployment, it can stand as the network layer-two and provide real transparency.""Imperva monitors all traffic, even customer access, to the web application. Then, Imperva uses features like signatures to identify attacks like cross-site scripting or SQL injection.""The most valuable features of the Imperva Web Application Firewall are performance and flexibility. We can extend or customize the box itself.""Very intuitive and granular configuration - It does not require much time, or advanced knowledge, for configuration and maintenance."

More Imperva Web Application Firewall Pros →

Cons
"I am not sure if this application has a policy where you can create your custom policy and run it as our firewall. We should have some ability to also create some custom policy, then run it as a firewall.""We would like them to hire people in Sweden because it's quite hard when people are sitting in the UK or Belgium because some of the customers really want them to be local.""Incapsula services also provides load balancing services for their service IP address environment. So far, with monitoring their services, the IP address was only changed once.""It's quite expensive.""The log analytics interface within Incapsula isn't really good. For example, if you have to get all logs from there, it's a very cumbersome process.""The salespeople tend to exaggerate its capabilities, which can cost you money if you don't verify the information.""The solution should integrate with something that looks at continuous security management.""It would be beneficial to include vulnerability management in the solution, similar to what they have for their on-premise solution."

More Imperva DDoS Cons →

"They can provide an option to create reports, automatically import the entire report, and create rules again. In a real-life crisis, it would be helpful to be able to import a report and generate security rules from that report. I should be able to create a simple query and import the reports automatically. It can maybe also tell us the format of the report.""The signature updates could be faster. Sometimes we have to upload signatures to the Imperva portal for checking and analysis before we can use them.""Imperva Web Application Firewall can improve by providing better features, such as improved prevention of zero-day attacks. Additionally, it should include a VR meta-analysis.""They recently separated the WAF and the DAM management gateways in order for each of these to be managed from different areas, so I believe it now requires additional investments for what was previously a single complete solution.""I don't really use it and therefore can't speak to areas of improvement.""There could be some limitations that from the converged infrastructure perspective: when you want to converge with everything and you want Imperva to get there easily because it's not a cloud component. For example, when you want to build servers and you're using OneView to manage your software-defined networks, implementing Imperva right away is not that simple. But if you're doing just a simple cloud infrastructure with servers in there, you're good to go. Also, we are not able, with Imperva, to block by signatures. Imperva by itself needs to be complemented with another service to do URL filtering.""I think that better bot protection is needed in this solution.""Sometimes, support tickets don't get addressed quickly."

More Imperva Web Application Firewall Cons →

Pricing and Cost Advice
  • "For enterprise contracts you will be in touch with a dedicated account manager who will guide you regarding licensing."
  • "​Although the pricing can be a little high, it is worth the protection and security that it offers.​"
  • "The data packages are higher than our needs so we end up paying for data that we don't use."
  • "The cost is on par with other solutions such as Cloudflare and Akamai."
  • "It is not expensive compared to the other similar solutions in this category."
  • "It is a very expensive solution. The price is very high. A lot of customers tell us that they would love to use Imperva more. I have some customers who have 50 websites, but they have only 10 websites on Imperva because of the price. They would love to have all their websites running through Imperva, but they can't. They have to choose the more critical websites to protect because the price is very high. It is a very good product, but it is too expensive. If you buy a plan for 20 megabytes and you don't consume all of your 20 megabytes, it is okay, but if you consume more, you are charged for the superior traffic."
  • "The cost is somewhere around $10,000 a site. For every site, you pay individually. For every DNS entry, you have you pay."
  • "It is expensive."

    • More Imperva DDoS Pricing and Cost Advice →

  • "Make sure you understand the way that Imperva charges. It's very affordable. However, I would like to see a package with the Virtual Patching included. You get to do patching separately."
  • "Everybody complains about the price of this solution."
  • "The cost of this solution depends on the platform."
  • "The price of this solution is a little bit high compared to competitors."
  • "There are some licenses that you have to buy to use some features. Its price could be better. Price is always important because, at the end of the day, customers have a budget. If you can meet the budget, you can sell, and if you don't, you cannot sell."
  • "There is a license for this solution and we purchase the license annually with no additional fees."
  • "There are a couple of different licensing models."
  • "The price of Imperva Web Application Firewalls is expensive compared to others."

    • More Imperva Web Application Firewall Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
    See Recommendations
    771,157 professionals have used our research since 2012.
    Comparison Review
    Anonymous User
    CloudFlare vs Incapsula: Web Application Firewall
    CloudFlare vs Incapsula: Round 2 Web Application Firewall Comparative Penetration Testing Analysis Report v1.0 Summary This document contains the results of a second comparative penetration test conducted by a team of security specialists at Zero Science Lab against two cloud-based Web Application Firewall (WAF) solutions: Incapsula and Cloudflare. This test was designed to bypass security controls in place, in any possible way, circumventing whatever filters they have. Given the rise in application-level attacks, the goal of the test was to provide IT managers of online businesses with a comparison of these WAFs against real-world threats in simulated real-world conditions. Zero Science Lab is a Macedonian Information Security Research and Development Laboratory that specializes in information security hardening, consulting, network security, vulnerability research, software and hardware security assessment, penetration testing, malware analysis, forensics and much more - https://www.zeroscience.mk Background In February 2013, we conducted the first comparative pentest analysis of the CloudFlare, Incapsula and ModSecurity Web Application Firewall (WAF) solutions. The goal of a WAF is to block hacker attacks / unwanted malicious traffic to your web application with as few false positives as possible. Since then, all three vendors had replied to the findings, applying patches to the discovered bypasses and improving their products to protect their… Read more →
    Questions from the Community
    What do you like most about Imperva Incapsula?
    Top Answer:We use Imperva DDoS to stop DDoS attacks and reduce the amount of unwanted queries against web services or web scraping.
    Read all 25 answers   →
    What is your experience regarding pricing and costs for Imperva Incapsula?
    Top Answer:The solution is very affordable. It's based on the traffic utilization, the average traffic utilization, not the DDoS traffic. Therefore, if you're being DDoSed, you don't pay extra for the absorption… more »
    Read all 13 answers   →
    What needs improvement with Imperva Incapsula?
    Top Answer:It’s hard to think of an improvement. The three-second service level agreement is already better than the competition. You would ordinarily say something like API protection. However, they've got that… more »
    Read all 21 answers   →
    Which is the best DDoS protection solution for a big ISP for monitoring a...
    Top Answer:My recommendation is Imperva.
    Read all 8 answers   →
    Is Citrix ADC (formerly Netscaler) the best ADC to use and if not why?
    Top Answer:For ADC, any ADC can do a good job. But in case if you want to add WAF functionality to the same ADC hardware you have to look for other ADC's like F5, Imperva, Radware, Fortinet, etc. 
    Read all 3 answers   →
    DDoS solutions: Any other solutions to consider aside from Radware Defens...
    Top Answer:You can have a look to Imperva Cloud WAF, the anti-DDoS mitigation is under 1s and works very well. I observed a lot of DDoS attacks that were well managed (even not seen by the customer) by Imperva… more »
    Read all 5 answers   →
    Ranking
    18th
    out of 82 in Web Application Firewall (WAF)
    Views
    2,665
    Comparisons
    2,250
    Reviews
    4
    Average Words per Review
    485
    Rating
    8.3
    6th
    out of 82 in Web Application Firewall (WAF)
    Views
    7,938
    Comparisons
    6,351
    Reviews
    16
    Average Words per Review
    374
    Rating
    8.7
    Comparisons
    Also Known As
    Imperva Incapsula
    Learn More
    Imperva
    Imperva
    Overview

    Imperva DDoS is a solution that offers protection for web applications and websites and all their associated business-critical data from cyberattacks. The cloud-based application delivery service helps improve user experiences by improving their performance. Through its security platform, Imperva DDoS also provides DDoS mitigation, a web application firewall, and a global load balancer, and includes a content delivery network — all designed to maximize performance.

    Imperva DDoS Features

    Imperva DDoS has many valuable key features. Some of the most useful ones include:

    • API security
    • Web application firewall
    • Bot management
    • Application delivery
    • Runtime protection (RASP)
    • Discovery and assessment
    • Data protection
    • Data risk analytics
    • Data privacy
    • Application delivery control (ADC)
    • Content delivery network (CDN)
    • DDoS mitigation
    • Global server load-balancing (GSLB)
    • Web application firewall (WAF)
    • Client-side protection
    • Runtime protection

    Imperva DDoS Benefits

    There are several benefits to implementing Imperva DDoS. Some of the biggest advantages the solution offers include:

    • Reduce web application risk: Imperva DDoS includes automatic policy creation and fast rule propagation that give your IT and security departments the ability to use third-party code without risk while working at the pace of DevOps.
    • Security from edge to database: Imperva DDoS’s WAF feature secures from edge to database, so the traffic you receive is only the traffic you want.
    • Safeguard sensitive and personal data: Imperva DDoS provides visibility into sensitive and personal data, with the controls to protect that data and the ability to unify management across cloud, on-premises, and in hybrid environments to help accommodate changing threats, new regulations, and challenging audits.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by Imperva DDoS users.

    PeerSpot user, Etienne W., CDN & Cybersecurity Engineer - Web performance & security at CDN Tech / Ecritel, says, “It is a good solution that allows us to protect websites. It is stable, scalable, quick and easy to use.” He goes on to explain, “WAF protection works almost out-of-the-box. The Anti-DDoS mitigation in less than 1s, I saw it many times in production, I can say it works. CDN has high performances, and the Smart Caching mode is really "smart" (you can do some efficient caching even if you're not a specialist). Its unique interface for managing security performance and ease of use are the most valuable features of this solution."

    An IT Senior Manager at an outsourcing company mentions, “The most valuable features are DDoS protection. The Incapsula [Imperva DDoS] environment helps us monitor all the web activity. All the web activity is passed through their WAF cloud services, then that can help us to monitor those activities. That can help protect against DDoS hacking.”

    Another PeerSpot reviewer, Ben D., Sales Executive at EVVO LABS, comments, "Imperva Incapsula [DDoS] has many valuable features. One, it protects the top 10 OWASP vulnerability, the open web application software platform, this is standard. Secondly, it protects against broken authentication. As well, it has remote execution of code."

    A Solutions Architect at a financial services firm states, “The solution's most valuable aspect is that it is easy to configure. The solution keeps itself up to date itself and there's no customization that we need to do. It makes it extremely easy and cuts back on the amount of work required, and saves us on man-hours.”

    Imperva Web Application Firewall is a versatile solution that protects web applications and databases from various attacks, including DDoS, cross-site scripting, and SQL injection attacks. It offers data security, availability, and access control and can be deployed on-premises or on the cloud. 

    The solution has good security against web attacks and offers advanced bot protection, API security, and mitigation features. Imperva WAF is easy to configure and deploy; it has good customer service and an excellent user interface.

    Sample Customers
    Hitachi, BNZ, Bitstamp, Moz, InnoGames, BTCChina, Wix, LivePerson, Zillow and more.
    BlueCross BlueShield, eHarmony, EMF Broadcasting, GE Healthcare, Metro Bank, The Motley Fool, Siemens
    Top Industries
    REVIEWERS
    Financial Services Firm19%
    Non Tech Company11%
    Marketing Services Firm8%
    Media Company8%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm16%
    Manufacturing Company7%
    Comms Service Provider7%
    REVIEWERS
    Computer Software Company30%
    Financial Services Firm20%
    Insurance Company10%
    Comms Service Provider10%
    VISITORS READING REVIEWS
    Financial Services Firm18%
    Computer Software Company14%
    Manufacturing Company7%
    Insurance Company6%
    Company Size
    REVIEWERS
    Small Business49%
    Midsize Enterprise13%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise14%
    Large Enterprise62%
    REVIEWERS
    Small Business53%
    Midsize Enterprise16%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise15%
    Large Enterprise64%
    Buyer's Guide
    Imperva DDoS vs. Imperva Web Application Firewall
    March 2024
    Free Report: Imperva DDoS vs. Imperva Web Application Firewall
    Find out what your peers are saying about Imperva DDoS vs. Imperva Web Application Firewall and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    771,157 professionals have used our research since 2012.

    Imperva DDoS is ranked 18th in Web Application Firewall (WAF) with 74 reviews while Imperva Web Application Firewall is ranked 6th in Web Application Firewall (WAF) with 46 reviews. Imperva DDoS is rated 8.8, while Imperva Web Application Firewall is rated 8.6. The top reviewer of Imperva DDoS writes "I like the content monitoring feature which I haven't seen in other WAF solutions". On the other hand, the top reviewer of Imperva Web Application Firewall writes "Offers simulation for studying infrastructure and hybrid infrastructure protection". Imperva DDoS is most compared with Cloudflare, Akamai, Arbor DDoS, Radware DefensePro and Fortinet FortiWeb, whereas Imperva Web Application Firewall is most compared with AWS WAF, F5 Advanced WAF, Microsoft Azure Application Gateway, Fortinet FortiWeb and Cloudflare Web Application Firewall. See our Imperva DDoS vs. Imperva Web Application Firewall report.

    See our list of best Web Application Firewall (WAF) vendors.

    We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.