This course covers the importance of web application firewalls (WAFs) as an additional security measure for applications. The learning outcomes include understanding the different options available, such as public cloud provider options by AWS, Azure, and GCP, as well as self-managed options using Mod-Security. The course teaches basic features of WAFs, challenges in their implementation, comparison with other security measures, limitations, and test coverage. The teaching method involves presenting an overview of WAFs and discussing various aspects related to their selection and configuration. The intended audience for this course includes individuals interested in enhancing the security of web applications and understanding the role of WAFs in the defense-in-depth strategy.
Overview
Syllabus
Intro
Basic features
AWS
Azure Wolf
Cloud Armor
Apache Mod Security
Challenges
Comparison
Limitations
Test Coverage
Taught by
LASCON