What is CloudGuard WAF?
Last updated
Was this helpful?
Last updated
Was this helpful?
CloudGuard WAF is a fully automated Web Application & API Security solution. It is powered by a patented machine learning engine which continuously analyzes users' HTTP/S requests as they visit the website or API. The analysis includes the application structure and how users interact with the content in order to identify patterns and automatically stop and block malicious requests and bad actors.
Machine Learning-based Application Firewall - stop application layer attacks, including OWASP Top 10, with very minimal tuning and no false positives. Pre-emptive (no software updates) protection for zero-days such as Log4Shell and Spring4Shell.
HTTPS Traffic inspection - SSL certificates and private keys can be stored locally or in public cloud secrets storage (AWS/Azure)
Integration into modern environments and workloads (public cloud & Kubernetes) and CI/CD workflows supporting , , , , , , or .
Ease of ongoing management and maintenance – Enterprise Grade SaaS Web UI, GraphQL API, and Infrastructure-as-code using Terraform
- Identify and stop automated attacks before they negatively impact the bottom line or customer experience
- Automatically detect API usage and sensitive content to provide security via visibility. Stop malicious API access and abuse. Enforce the API schema provided by the user or automatically detected by CloudGuard WAF.
- prevents malicious files from being uploaded by utilizing Check Point's Threat Cloud.
- protections for over 2,800 WEB CVEs, based on Check Point award award-winning NSS-Certified IPS + Support for custom Snort 3.0 signatures.
- Limit the number of requests to a matched URI within a configured time scope, according to the source identifier.
- Enforce a set of Snort signatures in the same way regular IPS signatures are enforced.