Will Your WAF Know When You Are Compromised?
In my last blog post “The Existential Crisis of a WAF,” I talked through the consequences of an attack getting through either by a rule not matching, a device misconfiguration, or traffic obfuscation. The latter includes the inability to decrypt and parse the traffic, which was the case with the ... Read More
The Existential Crisis of a WAF
If a WAF could think for itself during an attack, for the first part of the attack, it would be singing the “ignorance is bliss” theme song even as the Zero-Day attack was creeping up on it like a Grim Reaper. Like a good horror movie, it would be the ... Read More
