azure application gateway

39 Topics

Azure WAF Custom Rule Samples and Use Cases
Learn how to use Azure WAF Custom Rules to address common application and network security scenarios.
Anthony_Roman
Jan 05, 2021 Place Azure Network Security Blog
53KViews
4likes
13Comments
Introducing the Network Security Dashboard for Microsoft Defender for Cloud
Learn about the new Network Security Dashboard in Microsoft Defender for Cloud
Mohit_Kumar
Sep 23, 2021 Place Azure Network Security Blog
29KViews
9likes
3Comments
Introducing the Application Gateway WAF Triage Workbook
The new "Application Gateway WAF Triage" workbook is free of charge and it provides a convenient way to triage WAF events and identify false positives. It gives you the insights you need to better fine-tune your WAF policy.
camilamartins
Nov 23, 2021 Place Azure Network Security Blog
28KViews
6likes
34Comments
Azure WAF Tuning for Web Applications
False positives occur when a Web Application Firewall (WAF) erroneously detects legitimate web traffic as malicious and subsequently denies access. For instance, an HTTP request that poses no threat may trigger WAF to classify it as an SQL injection attack due to how characters are passed through the request body, thereby causing the request to be rejected and denying access to the user. Find out in this post some examples to help reduce false positives in your Azure WAF environment.
tobiotolorin
Mar 23, 2023 Place Azure Network Security Blog
22KViews
3likes
4Comments
Part 1 - Lab Setup: Azure WAF Security Protection and Detection Lab
This tutorial shows how to deploy and configure the lab environment to test and validate protection and detection capabilities of Azure WAF.
Mohit_Kumar
Jan 15, 2021 Place Azure Network Security Blog
22KViews
5likes
12Comments
Azure Web Application Firewall: WAF config versus WAF policy
In this blog, we will explore the feature variations when deploying Azure Web Application Firewall (WAF) on Azure Application Gateway using WAF config or WAF policy. We will also show how WAF policies differ between Azure WAF for Azure Front Door and Azure Application Gateway deployments.
camilamartins
Apr 16, 2021 Place Azure Network Security Blog
20KViews
8likes
3Comments
Part 3 - Vulnerability Exploitation Playbook: Azure WAF Security Protection and Detection Lab
This tutorial shows how to test Azure WAF's protections against and detections for Cross Site Scripting (XSS) attacks.
Mohit_Kumar
Jan 15, 2021 Place Azure Network Security Blog
17KViews
2likes
0Comments
Navigating Azure WAF Exclusions
Exclusions in Azure WAF (Web Application Firewall) are a critical feature that allows administrators to fine-tune security rules by specifying elements that should not be evaluated by WAF rules. This capability is essential for reducing false positives and ensuring that legitimate traffic flows unimpeded. Exclusions are designed to fine-tune the WAF’s sensitivity, allowing legitimate traffic to pass through while maintaining robust security measures. They are particularly useful in scenarios where certain request attributes, such as specific cookie values or query strings, are known to be safe but might trigger WAF rules due to their content or structure.
SaleemBseeu
Mar 30, 2024 Place Azure Network Security Blog
16KViews
2likes
0Comments
New Improvements on Azure WAF for Application Gateway
A new managed rule set as been launched in public preview on Azure WAF for Application Gateway, and a new backend WAF engine provides increased limits and better performance.
camilamartins
Jul 21, 2021 Place Azure Network Security Blog
13KViews
7likes
4Comments
Tutorial Overview: Azure Web Application Firewall Security Protection and Detection Lab
Security of Web Applications in Azure is a critical requirement for customers. In this section we provide an overview of the testing you will perform in the subsequent parts to validate security protection and detection capabilities of Azure WAF.
Mohit_Kumar
Jan 15, 2021 Place Azure Network Security Blog
13KViews
1like
0Comments