Agent Mode
English
    Listing Thumbnail

    Nuvme WAF Module – AWS WAF Implementation & AntiDDoS

     Info
    Sold by: Nuvme 
    Nuvme implements and calibrates AWS WAF on your account in 15–25 business days, delivering active protection against application-layer attacks with full documented visibility of every blocked threat. Includes: OWASP Top 10, Known Bad Inputs, Amazon IP Reputation, geo-blocking, rate limiting, bot control, custom endpoint rules, and AntiDDoS AMR — AWS's new DDoS protection rule set (June 2025) that automatically mitigates HTTP flood attacks within seconds, with attack traffic not billed to your AWS account. Deliverables: Architecture document, baseline security report, go-live report, and CloudWatch + AntiDDoS dashboards configured in your account.

    Overview

    Try agent mode
    Create proposal
    Ask question

    What You Get Nuvme's WAF Module is a fixed-scope implementation project that activates and calibrates AWS Web Application Firewall on your AWS account, protecting ALBs, CloudFront distributions, and API Gateways against application-layer attacks. What We Configure AWS Managed Rules (auto-updated by AWS):

    OWASP Top 10 (SQLi, XSS, Command Injection, Path Traversal) Known Bad Inputs (Log4Shell, Spring4Shell, recent CVEs) Amazon IP Reputation (globally identified malicious IPs) AntiDDoS AMR — DDoS automatic mitigation in seconds; attack traffic is not charged to your account Nuvme Custom Rules:

    Geo-blocking (high-risk countries) Rate limiting per IP IP blacklist Bot control (legitimate vs. malicious bots) Endpoint-specific rules (/checkout, /api/auth, /admin) Project Phases

    Discovery (Days 1–3):Map all internet-facing resources, analyze traffic profile, define protection strategy Configuration (Days 4–7):Create Web ACLs, activate managed rule groups, configure AntiDDoS AMR with maximum priority, deploy custom rules, activate Count mode for baseline collection Calibration (Days 8–22):Monitor traffic baseline, validate AntiDDoS AMR profiling, eliminate false positives, fine-tune thresholds Go-Live (Days 23–25):Switch to Block mode, deliver reports and dashboards, technical handoff Formal Deliverables

    Architecture document (all Web ACLs, resources, rules and logic) Baseline report (traffic volume, threat types, geographic origins) Go-live report (first week with active protection) CloudWatch dashboard + native AntiDDoS WAF dashboard Proven Results — Customer Case One week of active protection on a SaaS e-commerce platform: 132.2M requests inspected, 2.71M malicious requests blocked (including a coordinated attack peak of 1.9M requests in 24h), 100% platform availability maintained throughout. AWS Infrastructure Costs (billed to client via Ingram)

    Web ACL: $5/mo per ACL Rule groups: $1/mo per group Requests inspected: $0.60 per million AntiDDoS AMR: included — attack traffic not billed Bot Control (optional): $10/mo + $1/M additional requests Post-Project WAF remains active in the client's account. Ongoing maintenance (rule tuning, new threat response, periodic reports) is covered by Nuvme's monthly managed plans

    Highlights

    • AntiDDoS L7 automatic mitigation (AntiDDoS AMR) — attack traffic blocked through AWS Web Application Firewall (WAF)
    • Active protection deployed in 15–25 business days — structured calibration process eliminates false positives before go-live, protecting legitimate traffic from day one
    • Executive security report with real data from your own environment: threats blocked, geographic origins, attack patterns — ready to present to leadership and auditors

    Details

    Sold by
    Nuvme 
    Categories
    Security 
    Cloud Operations 
    Implementation 
    Delivery method
    Deployed on AWS
    New

    Introducing multi-product solutions

    You can now purchase comprehensive solutions tailored to use cases and industries.

    Learn more 
    Explore multi-product solutions
    Multi-product solutions

    Pricing

    Custom pricing options

    Request private offer
    Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.

    How can we make this page better?

    Tell us how we can improve this page, or report an issue with this product.
    Tell us how we can improve this page, or report an issue with this product.

    Legal

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Support

    Vendor support

    Nuvme provides dedicated support throughout the entire WAF Module project and beyond. During the project (15–25 business days), clients have direct access to the Solutions Architect and Account Manager responsible for the implementation via a shared Slack channel. Response time: same business day. After project delivery, ongoing WAF maintenance — including rule tuning, new threat vector response, and periodic security reports — is covered by Nuvme's monthly managed plans. For inquiries about this listing: Email: contato@nuvme.com.br  Website: https://nuvme.com.br  LinkedIn: linkedin.com/company/nuvme Nuvme is an AWS Advanced Tier Services Partner and Datadog Partner, headquartered in Brazil, specialized in cloud infrastructure management and security for SaaS, fintech, healthtech, and e-commerce companies running on AWS.