Web Application Firewall (WAF) Questions
Evgeny Belenky
IT Central Station
Aug 02 2021

Hi peers,

What are the OWASP Top 10 this year? 

What single web app security tool (or a minimum set of tools) would you recommend for overall web app protection (from the most critical security risks covered by these Top 10)?

VarunGoyal
User
Jul 07 2021

Hi community,

I'm trying to understand what limitations AWS WAF has vs other (alternative) Web Application Firewall (WAF) products.

John RendyHi Varun, I have had experienced with several WAF deployments and deep… more »
Edwin EzeOsiago
Head of security solutions at Infodata Professional Services
Jul 26 2021

Should one go for a URL Filtering as an add-on to NGFW or just deploy a Web proxy, instead?

I am one who advocates that firewalls with URL Filtering can't serve better than Web security solutions (i.e., a Web proxy).

What's your opinion?

Mike HounsomeOver 50% of security vulnerabilities are non-Web based traffic, such as DNS… more »
Evgeny BelenkyHi @Oleg Pekar and @Manish Nalawade. Can you share your thoughts?
chiefexe795285Use a Web Proxy that will protect your users when they are working at home as… more »
Steven Mooney
User at ODS
Feb 05 2021

Has anyone ever heard of secureaccess.com? 

The service they are offering appears to tick all the boxes that I'm after.

Any other companies do something remotely similar or the same thing?

I'm going to list a few things that I'm after...

  • I need a service that shields the connection between my employees and the web applications that we use.
  • permission management for individual web applications at both user and group level
  • SSO and 2FA
  • Integrated WAF
  • Integrate LDAP

Thanks

Menachem D Pritzker
Director of Growth
IT Central Station
Aug 03 2021

Hi community, 

There are so many firewall products in the market today. Who are we going to be talking about 3-5 years from now?

imadamNetscope, Zscaler if they continue route they are on now. FIrewalls needs great… more »
Nehad ElkordiCisco Portfolio is focusing on total security inside and outside including cloud… more »
Lipaz HesselWell with the SD-WAN raising it is common to see cloud firewall implementations… more »
Rony_Sklar
IT Central Station
May 01 2021

Is a WAF the best defense against a DDoS attack? What are the most effective ways of protecting a business against DDoS attacks? 

Georges SamahaHello there In order to Talk about DDoS protection, we have at First to split… more »
Sujit Sharma
Information Security Engineer at a tech services company with 1,001-5,000 employees
Mar 03 2021

We required a 24/7 automated vulnerability monitoring tool for securing our web applications. We are looking for options like Sitelock and Immuniweb.

it_user218361I haven't heard about SiteLock or Immuniweb, but I have used Qualys Web… more »
it_user550380In my experience the best option is to make dast and sast before each change of… more »
it_user648771While Cloudflare and AWS offer similar solutions, they do not have the scale, or… more »