Sold by: ImpervaÂ
Deployed on AWS
Imperva's Managed Rules for IP Reputation allow you to take a proactive approach to threat prevention and security management by providing an extensive IP whitelist/blacklist that is regularly monitored and updated.
Overview
Imperva's Managed Rules for IP Reputation allows you to take a proactive approach to security by providing an extensive IP whitelist/blacklist which is regularly monitored and updated. Imperva's reputation feed leverages crowd-sourcing from aggregated attack data to update its list with newly detected malicious sources, taking the burden off of IT teams to account for undiscovered threats.
Highlights
- Proactive approach to threat prevention and security management; Automated protection regularly monitored and updated; Integrates seamlessly with AWS WAF
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/unit |
|---|---|
Charge per month in each available region (pro-rated by the hour) | $40.00 |
Charge per million requests in each available region | $0.40 |
Vendor refund policy
non-refundable
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
For issues related specifically to an Imperva ruleset, you can contact Imperva support by email.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Penta Security
By Cyber Security Cloud Inc.
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
IP Reputation Management
Provides an extensive IP whitelist and blacklist with regular monitoring and updates
Threat Intelligence
Leverages crowd-sourced attack data to detect and update malicious source information
Security Integration
Seamlessly integrates with AWS Web Application Firewall (WAF) for enhanced protection
Automated Protection
Continuously updates threat intelligence without manual intervention from IT teams
Attack Source Detection
Identifies and tracks newly emerging malicious IP sources through aggregated attack data
Threat Intelligence Database
Utilizes ThreatDB collected from 700,000 websites across 171 countries to create a comprehensive Malicious IP Reputation list
IP Traffic Filtering
Provides protection against traffic originating from identified malicious IP addresses using advanced threat detection mechanisms
Security Technology Framework
Leverages security technologies from WAPPLES enterprise web protection platform with validated high-detection capabilities
Cyber Threat Intelligence
Incorporates Penta Security's proprietary Cyber Threat Intelligence (CTI) for real-time threat analysis and response
Web Application Protection
Implements managed rules for AWS WAF to detect and block potential security vulnerabilities and malicious traffic patterns
Web Application Threat Protection
Comprehensive ruleset targeting OWASP Top 10 Web Application Threats with low false-positive rate
Vulnerability Mitigation
Managed rules addressing code injection techniques including SQLi, NoSQLi, OScommandi, XSS, and directory traversal
Technology-Specific Protection
Specialized rules for web technologies like Apache Struts2, Apache Tomcat, Oracle WebLogic, WordPress, Drupal, and Joomla
Cyber Threat Intelligence
Regularly updated rulesets incorporating latest threat intelligence and security alerts
Compliance Support
Security rules designed to help meet compliance standards such as PCI-DSS
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
No security profile
-
-
-
-
-
No security profile
Standard contract
No
No
No
Customer reviews
Unimpressed
Does not appear to be kept up to date
Reviewed on May 01, 2023
Review from a verified AWS customer
We recently subscribed to this rule to try and block carding botnets from hitting our website. We were attacked a few days after subscribing and applying the rule to our WAF - of the more than 250,000 requests this rule blocked 53. Of the 1400 distinct IPs hitting us, this rule blocked 1.
Igor Belyakov
Its work
Reviewed on Feb 09, 2021
Review from a verified AWS customer
Best set of rules for AWS WAF. Works fine.
The main problem is the speed of updating the reputation lists. Several hours pass from the moment a bot appears until it is blacklisted
WAFUser
Too broad without granular controls
Reviewed on May 08, 2019
Review from a verified AWS customer
I really wanted to be able to use this but there doesn't appear to be any granular control, e.g the ability to include known attack IPs but exclude IPs on lists for not having reverse DNS on the IP they send mail from. In our brief examination of how the list would work (using it to count vs block) it would have been blocking clients we would have wanted to allow.
Having the ability to turn on/off specific inclusion criteria in the list, or the vendor providing various confidence level lists would allow me to possibly use this.