Sold by: Penta SecurityÂ
Deployed on AWS
Vendor Insights
Cloudbric Managed Rules for AWS WAF - Malicious IP Protection provides security against Malicious IP traffic based on the Malicious IP Reputation List created using the ThreatDB collected and analyzed by Cloudbric Labs.
Overview
Cloudbric Managed Rules for AWS WAF - Malicious IP Protection was created to protect the websites and web applications against the traffic originated from various threat IPs.
Malicious IP Protection utilizes the ThreatDB of Cloudbric Labs, which collects and analyzes the threat intelligence from 700,000 websites in 148 countries to create a Malicious IP Reputation list and respond to the Malicious IP traffic.
Cloudbric Managed Rules for AWS WAF is created based on the security technologies and expertise of WAPPLES which has protected the web services for enterprises since 2005 and has recently been validated by a third-party testing firm to have a top-tier detection rate. Cloudbric Managed Rules for AWS WAF utilizes Penta Security's own Cyber Threat intelligence (CTI), Cloudbric Labs, to provide a safer online environment.
Interested in trying out the product before committing? Click the 'Request Private Offer' button to contact us. We offer a 14-day free trial so you can explore the product firsthand. Please note that after the free trial period, the private offer will automatically convert to a regular subscription at the standard rate.
Having difficulties managing the rules for your AWS WAF? Cloudbric WAF Managed Service (WMS) provides you with accurate information about the threats and vulnerabilities on your web application in real time, easy-to-use management system and dedicated console, and rule optimization from our security experts so that you can implement a security level best fit for your AWS WAF even if you do not have an expert security knowledge.
AWS Marketplace: https://aws.amazon.com/marketplace/pp/prodview-r4opjncghemnc Cloudbric Website: https://www.cloudbric.com/cloudbric-wms/Â
Highlights
- Provides protection against traffic originating from various threat IPs.
- Top-tier detection rate validated by a third-party testing firm.
- Regularly managed and updated by Cloudbric Labs.
Details
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(1)
ISO27001
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/unit |
|---|---|
Charge per month in each available region (pro-rated by the hour) | $35.00 |
Charge per million requests in each available region | $0.20 |
Vendor refund policy
Non-Refundable
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
For product-related all inquiries, please contact : awsmkp@pentasecurity.com .
If you are a buyer based in Japan, and need to request a TQI, please contact: jp-sales@pentasecurity.com .
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Penta Security
By Cyber Security Cloud Inc.
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Threat Intelligence Database
Utilizes ThreatDB collected from 700,000 websites across 148 countries to create a comprehensive Malicious IP Reputation list
IP Traffic Filtering
Provides protection against traffic originating from identified malicious IP addresses using advanced threat detection mechanisms
Security Technology Framework
Leverages security technologies from WAPPLES enterprise web protection platform with validated high-detection capabilities
Cyber Threat Intelligence
Incorporates Penta Security's proprietary Cyber Threat Intelligence (CTI) for real-time threat analysis and response
Web Application Protection
Implements managed rules for AWS WAF to defend against potential web application security vulnerabilities and threats
Web Attack Protection
Comprehensive defense against OWASP Top 10 web vulnerabilities including SQLi, XSS, command injection, No-SQLi injection, path traversal, and predictable resource attacks
Threat Rule Management
Dynamically written, managed, and regularly updated security rules by F5 security specialists to address evolving cyber threats
Rule Application Mechanism
Seamless integration and attachment of security rules to AWS WAF instances for immediate enhanced protection
Vulnerability Coverage
Targeted mitigation of complex web application security risks across multiple attack vectors and exploitation techniques
Security Rule Monitoring
Continuous surveillance and proactive updating of ruleset to ensure ongoing defense against emerging web-based attack methodologies
Web Application Threat Protection
Comprehensive ruleset targeting OWASP Top 10 Web Application Threats with low false-positive rate
Vulnerability Mitigation
Managed rules addressing code injection techniques including SQLi, NoSQLi, OScommandi, XSS, and directory traversal
Technology-Specific Security
Protection against known exploits for web technologies like Apache Struts2, Apache Tomcat, Oracle WebLogic, WordPress, Drupal, and Joomla
Threat Intelligence Integration
Regularly updated rulesets incorporating latest cyber threat intelligence
Compliance Support
Security rules designed to help meet security standards such as PCI-DSS
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
-
-
-
-
-
No security profile
No security profile
Standard contract
No
No
No
Customer reviews
5
2 ratings
2 AWS reviews
|
2 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Jee
Comprehensive Malicious IP Protection with XFF Detection
Reviewed on Apr 14, 2025
Review from a verified AWS customer
One of the standout features is its ability to perform detection in the X-Forwarded-For (XFF) header, rather than relying solely on the host header. This ensures more comprehensive protection against malicious IP traffic, offering an extra layer of security against spoofing and unauthorized access attempts.
Additionally, the implementation process was incredibly straightforward. The rules are well-structured, intuitive to configure, and seamlessly integrate with AWS WAF. Whether managing dynamic threats or refining security policies, this solution makes it easy to enhance web application protection without unnecessary complexity.
Alice G.
great add-on for your aws waf
Reviewed on Apr 03, 2025
Review provided by G2
What do you like best about the product?
I like how easily it can be implemented into AWS WAF. Knowing that these settings are pre-defined by experts gives me reassurance that my website is doubly protected.
What do you dislike about the product?
Of course, as this rule set is pre-defined, there's a limited customization, however these rules seem to be updated regularly.
What problems is the product solving and how is that benefiting you?
Well, obviously I can't set up the latest rules from A to Z by myself. Leveraging pre-defined rules is one solution that really helped me add extra security features, such as blocking malicious IPs in advance.
Lucas M.
Most neat and basic IP set
Reviewed on Mar 18, 2025
Review provided by G2
What do you like best about the product?
Simplicity is definitely its best feature. Very easy to integrate with AWS WAF.
It blocks malicious IPs without any complicated setup, which makes it super easy to implement. I will see how it would go.
It’s a great option for people like me who need an affordable solution because I can’t afford security experts.
Plus, their customer support has been really helpful, making everything even easier.
This is my second product with them, and I’ve got to say, so far so good.
It blocks malicious IPs without any complicated setup, which makes it super easy to implement. I will see how it would go.
It’s a great option for people like me who need an affordable solution because I can’t afford security experts.
Plus, their customer support has been really helpful, making everything even easier.
This is my second product with them, and I’ve got to say, so far so good.
What do you dislike about the product?
While it does the job well, I wish there were a bit more customization for specific needs.
If you're looking for more control over what gets blocked, this might feel too basic.
They offered me their managed service for deeper control, but I'm satisfied with what I have for now, so I’ll consider it later if I need more.
If you're looking for more control over what gets blocked, this might feel too basic.
They offered me their managed service for deeper control, but I'm satisfied with what I have for now, so I’ll consider it later if I need more.
What problems is the product solving and how is that benefiting you?
As a business owner without a dedicated security team, I need affordable solutions.
This product helps me maintain security without the need for hiring experts.
It provides me with confidence knowing that my application is protected from known malicious IPs, improving my project’s overall security.
This product helps me maintain security without the need for hiring experts.
It provides me with confidence knowing that my application is protected from known malicious IPs, improving my project’s overall security.
Peter Schultz
Easy Threat IP Blocking
Reviewed on Sep 21, 2022
Review from a verified AWS customer
It's good to be able to easily apply and block threat IPs to the division.
Easy to use with WAF services.