WAF
Web Application Firewall
A WAF inspects HTTP/HTTPS traffic between users and web applications to block attacks like SQL injection, cross-site scripting, and request forgery. It applies rule sets that filter malicious requests before they reach the application server.
Como é usado em cibersegurança
Security engineers configure WAF rules to protect public-facing web applications from OWASP Top 10 attacks. SOC analysts review WAF logs to detect application-layer attack campaigns and credential stuffing attempts. Penetration testers probe WAF configurations to identify bypass techniques and recommend rule improvements.
Termo relacionado no glossário: web application firewall
As definições são explicações originais escritas para fins de desenvolvimento profissional. Para definições técnicas autoritativas, consulte NIST, ISO ou o órgão de normalização correspondente.