November 19, 2020
The hidden pitfalls of popular WAFs
Why popular WAFs don't work?
Over the years we took thousands of calls with Appsec teams around the globe. They all told us the same thing: our existing WAF doesn’t work.
- False positives. Tedious tuning. Still, no blocking mode.
- Too much noise. Lack of integrations. No actionable data at all.
- Appliances don’t scale. DevOps hate it.
- No real API protection.
- Test your existing WAF and see if it’s good
- Eliminate manual rules tuning
- Set up proper API protection
- Justify the migration efforts to management
Co-Founder of Wallarm