Feb 12 · 10 min read · Why Traditional WAF Approaches Fail for Modern APIs Standard WAF rulesets were engineered for HTML form submissions and browser-based interactions. They excel at blocking SQL injection in query parameters but struggle with JSON-based attacks, JWT man...
Join discussionFeb 12 · 9 min read · Metadata SEO Title: WAF Configuration Guide: Secure Modern Web Applications Meta Description: Learn how to configure Web Application Firewalls for cloud-native apps in 2025. Practical WAF rules, OWASP protection, and deployment strategies. Primary Ke...
Join discussionFeb 3 · 19 min read · For the past two years, Otoroshi has had a Web Application Firewall powered by Coraza, the excellent Go implementation of ModSecurity. To achieve that, we compiled Coraza to WebAssembly (wasm) and ran it inside Otoroshi using our wasm virtual machine...
Join discussion
Jan 10 · 9 min read · Tổng quan Từ lâu trong kiến trúc về bảo mật thì FortiWeb Web Application Firewall (WAF) được xem như là một lớp phòng thủ tuyến đầu. Tại đây WAF chịu trách nhiệm bảo vệ ngăn chặn các cuộc tấn công dò quét từ bên ngoài vào các ứng dụng Web, tuy nhiên ...
Join discussion
Jan 10 · 7 min read · Overview For a long time in security architecture, the FortiWeb Web Application Firewall (WAF) has been considered a frontline defense layer. Here, the WAF is responsible for protecting against external scanning attacks on web applications. However, ...
Join discussion
Dec 29, 2025 · 3 min read · 1. Introduction In today’s cloud-native world, most applications are publicly accessible over the internet. This makes them vulnerable to common web attacks such as SQL Injection, Cross-Site Scripting (XSS), bad bots, and brute-force attempts. Tradit...
Join discussionNov 24, 2025 · 4 min read · Running a homelab is all about learning, experimenting, and taking control of your own infrastructure. For years, Cloudflare acted as my security and proxy layer, filtering traffic and masking my home IP. But eventually, I decided to drop Cloudflare ...
Join discussion
Nov 20, 2025 · 5 min read · I was talking to a very good friend of mine who recently launched their first startup. They were frustrated by their AWS Firewall Manager bill: $370/month for Firewall Manager (FMS) policies and their inspection costs across three accounts. They had ...
Join discussionNov 10, 2025 · 2 min read · 1. Create VPC, Subnets, Route tables Create VPC Create Two EC2 Use your VPC, Public Subnet, Security Group and add User-Data by using User-Data's information Click Launch Instances Create for Second Lab Server too 2. Create an applica...
Join discussion
Nov 7, 2025 · 7 min read · In the world that we live in today, security whether physical, national or cyber security keeps on making headlines in almost every news broadcast and newspaper. I don’t know the exact figures but we both can agree that organizations, governments and...
Join discussion