Sold by: Cyber Security Cloud Inc.Â
Deployed on AWS
Cyber Security Cloud Managed Rules are designed to mitigate and minimize vulnerabilities, including all those on OWASP Top 10 Threats list. With the HighSecurity OWASP Set, you can start protecting your web applications right away with a low false-positive rate and a higher defense capability.
Overview
This product is for new AWS WAF. Cyber Security Cloud Managed Rules provide rulesets that are regularly updated to include the latest threat alerts by using Cyber Threat Intelligence. These rulesets are designed to mitigate and minimize vulnerabilities, including all those on OWASP Top 10 Web Application Threats list. By using our rulesets, you can satisfy the security requirements for web applications in order to comply with security standards such as PCI-DSS. Included are a lot of managed rules targeting common vulnerabilities such as code injection techniques (SQLi, NoSQLi, OScommandi, etc), XSS, directory traversal and known exploits involving web-applications using technologies such as Apache Struts2/ Apache Tomcat/ Oracle WebLogic/ WordPress/ Drupal/ Joomla! and Malicious Bots rulesets.
Cyber Security Cloud Managed Rules are designed to mitigate and minimize vulnerabilities, including all those on OWASP Top 10 Web Application Threats list. With the HighSecurity OWASP Set, you can start protecting your web applications right away with a low false-positive rate and a higher defense capability.
Highlights
- Can build a more secure environment immediately
- Designed to have the defense capability needed to protect your web applications, with a low false-positive rate
- Minimizes OWASP Top 10 Web Application threats
Details
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/unit |
|---|---|
Charge per month in each available region (pro-rated by the hour) | $25.00 |
Charge per million requests in each available region | $1.20 |
Vendor refund policy
Non-Refundable
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
For issues related specifically to Cyber Security Cloud Managed Rules, you can contact support offered by Cyber Security Cloud by email (We can respond in English or Japanese) https://www.wafcharm.com/en/managed-rules/support/Â
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Cyber Security Cloud Inc.
By Fortinet Inc.
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Web Application Threat Protection
Comprehensive ruleset targeting OWASP Top 10 Web Application Threats with low false-positive rate
Vulnerability Mitigation
Managed rules addressing code injection techniques including SQLi, NoSQLi, OScommandi, XSS, and directory traversal
Technology-Specific Security
Protection against known exploits for web technologies like Apache Struts2, Apache Tomcat, Oracle WebLogic, WordPress, Drupal, and Joomla
Threat Intelligence Integration
Regularly updated rulesets incorporating latest cyber threat intelligence
Compliance Support
Security rules designed to help meet security standards such as PCI-DSS
Web Application Threat Protection
Comprehensive ruleset covering OWASP Top 10 web application threats including SQL Injection, Cross Site Scripting, and Known Exploits
Security Signature Updates
Regular threat information updates from FortiGuard Labs to maintain current protection signatures
Malicious Traffic Detection
Protection against malicious bots and common vulnerabilities and exposures (CVE)
Configurable Security Response
Flexible configuration options to log, alert, and block detected web application threats
Attack Vector Coverage
Comprehensive security rules targeting multiple web application attack vectors including general and known exploits
Web Attack Protection
Comprehensive defense against OWASP Top 10 web vulnerabilities including SQLi, XSS, command injection, No-SQLi injection, path traversal, and predictable resource attacks
Threat Rule Management
Dynamically written, managed, and regularly updated security rules by F5 security specialists to address evolving cyber threats
Rule Application Mechanism
Seamless integration and attachment of security rules to AWS WAF instances for immediate enhanced protection
Vulnerability Coverage
Targeted mitigation of complex web application security risks across multiple attack vectors and exploitation techniques
Security Rule Monitoring
Continuous surveillance and proactive updating of ruleset to ensure ongoing defense against emerging web-based attack methodologies
Standard contract
No
No
No
Customer reviews
Y.K
The most detect vulnerability scans
Reviewed on Apr 05, 2021
Review from a verified AWS customer
We tested how many detected attacks when select waf rules.
We used vulnerability scanner to many rules, this rule detected the most attacks and few false positive.
This rule covers basic attacks on web applications such as SQL Injection and XSS and can block a wide range of attacks.
You can check which request was blocked by outputting the WAF log through Amazon Kinesis Data Firehose to see if there is a false positive and how much is blocked by which rule.
We could reductioned noise request for our application.