TrustRadius
Amazon Web Services offers AWS WAF (web application firewall) to protect web applications from malicious behavior that might impede the applications functioning and performance, with customizable rules to prevent known harmful behaviors and an API for creating and deploying web security rules.A very efficient solution against web attacksWe use AWS WAF in the Application Development department since it is useful to provide protection against the most common web attacks such as the injection of SQL code and site scripts, as well as to prevent these applications from consuming more resources than they should actually consume. For this, we develop custom rules that allow us to block such attacks and at the same time improve the visibility of web traffic.,Protect any application against the most common attacks. Provides better visibility of web traffic. It allows us to control the traffic in different ways in which it is enabled or blocked through the implementation of security rules developed personally according to our needs. It is able to block common attacks such as SQL code injection. It allows defining specific rules for applications, thus increasing web security as they are developed.,It is necessary to have knowledge about the software because otherwise inappropriate rules will be created. Your configuration can be somewhat tedious. Your support team takes a long time to answer the user's questions. Its costs can be somewhat high, unlike other services since it is charged by the number of rules that are created.,9,Our applications are less exposed to cyber attacks, which prevents them from getting out of control and consume much more resources than they should. Saved us money by preventing attacks. The traffic control is much more bearable. App development is safer.,,Trello, Bitbucket, LookoutBest solution to protect your Web App from Cyber AttacksWe were using WAF to protect our web application from cyber attacks by filtering the requests access to our web app. We created various rules and access control lists for blocking all the unwanted threats like SQL injections.,The deployment was pretty easy on the AWS platform The cost of using AWF WAF is pretty low as you only have to pay for the rules that you are assigning and also, you can chose the traffic that you need for your application The technical support is great, they are very good in understanding your problem and really helpful in providing the best solution,There is nothing much to dislike about this product,9,The overall security of the web application increased effectively after deploying AWS WAF No negative impacts were seen in the business The developers were more confident in the overall security model of the web application being developed and it was easy to integrate WAF into the existing system as the application was also using AWS platform,Imperva SecureSphere,Selenium, Eclipse, Oracle Database, JIRA Software, Skype for Business, Oracle VM VirtualBox, SoapUI NG Pro
Unspecified
AWS WAF
5 Ratings
Score 9.1 out of 101
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>TRScore

AWS WAF Reviews

AWS WAF
5 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 9.1 out of 101
Show Filters 
Hide Filters 
Filter 5 vetted AWS WAF reviews and ratings
Clear all filters
Overall Rating
Reviewer's Company Size
Last Updated
By Topic
Industry
Department
Experience
Job Type
Role

Reviews (1-2 of 2)

  Vendors can't alter or remove reviews. Here's why.
Hanna Bedoya profile photo
February 12, 2019

AWS WAF Review: "A very efficient solution against web attacks"

Score 9 out of 10
Vetted Review
Verified User
Review Source
We use AWS WAF in the Application Development department since it is useful to provide protection against the most common web attacks such as the injection of SQL code and site scripts, as well as to prevent these applications from consuming more resources than they should actually consume. For this, we develop custom rules that allow us to block such attacks and at the same time improve the visibility of web traffic.
  • Protect any application against the most common attacks.
  • Provides better visibility of web traffic.
  • It allows us to control the traffic in different ways in which it is enabled or blocked through the implementation of security rules developed personally according to our needs.
  • It is able to block common attacks such as SQL code injection.
  • It allows defining specific rules for applications, thus increasing web security as they are developed.
  • It is necessary to have knowledge about the software because otherwise inappropriate rules will be created.
  • Your configuration can be somewhat tedious.
  • Your support team takes a long time to answer the user's questions.
  • Its costs can be somewhat high, unlike other services since it is charged by the number of rules that are created.
AWS WAF is highly appropriate to interrupt or prevent cyber attacks because when implementing rules, whether they are specific or centralized, so any application that has these vulnerabilities is protected.

Implementing managed rules creates greater security to protect both API and applications.

If implemented along with other AWS tools, the security is much better, so if you want to protect applications against more specific attacks, it is ideal to integrate with Amazon CloudFront, which is a great benefit because it warns when thresholds are exceeded or specific attacks occur.

AWS WAF is ideal to avoid common web attacks. For more specific attacks and scenarios, I don't recommend this.
Read Hanna Bedoya's full review
No photo available
September 27, 2018

AWS WAF Review: "Best solution to protect your Web App from Cyber Attacks"

Score 9 out of 10
Vetted Review
Verified User
Review Source
We were using WAF to protect our web application from cyber attacks by filtering the requests access to our web app. We created various rules and access control lists for blocking all the unwanted threats like SQL injections.
  • The deployment was pretty easy on the AWS platform
  • The cost of using AWF WAF is pretty low as you only have to pay for the rules that you are assigning and also, you can chose the traffic that you need for your application
  • The technical support is great, they are very good in understanding your problem and really helpful in providing the best solution
  • There is nothing much to dislike about this product
It is a pretty useful product if your web application is deployed on Amazon Web Service platform, else it could be a little complicated and pricey. It's useful if you want to lay down your own rules for security and traffic management of your web app. Having AWS WAF can assure you that the application that you are creating have integrated security features which can be maintained easily for future use. It does has some flaws, but it is backed up by Amazon which is doing a great job in everything that they are doing, so it surely has a great future.
Read this authenticated review

AWS WAF Scorecard Summary

About AWS WAF

Amazon Web Services offers AWS WAF (web application firewall) to protect web applications from malicious behavior that might impede the applications functioning and performance, with customizable rules to prevent known harmful behaviors and an API for creating and deploying web security rules.

AWS WAF Technical Details

Operating Systems: Unspecified
Mobile Application:No