Sold by: Fortinet Inc.Â
Deployed on AWS
The Malicious Bots Ruleset analyzes requests and blocks known content scrapers, spiders looking for vulnerabilities, and other unwanted automated clients that OWASP has identified as risks to web applications.
Overview
Video
Video 1
Video
Video 2
Fortinet's WAF rulesets are based on the FortiWeb web application firewall security service and web application signatures, and are updated on a regular basis to include the latest threat information from FortiGuard Labs. The Malicious Bots Ruleset analyzes requests and blocks known content scrapers, spiders looking for vulnerabilities, and other unwanted automated clients that OWASP has identified as risks to web applications. Please see our other rulesets for additional protections.
Highlights
- Detects automated tools that scan for vulnerabilities
- Can be configured to log, alert and/or block
- Regular updates from FortiGuard Labs
Details
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/unit |
|---|---|
Charge per month in each available region (pro-rated by the hour) | $5.00 |
Charge per million requests in each available region | $0.50 |
Vendor refund policy
Non-Refundable
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Support offered by Fortinet. Contact Fortinet directly by email - awswaf@fortinet.com . Please see FAQ for more info.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Fortinet Inc.
By Cyber Security Cloud Inc.
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Bot Detection
Analyzes and blocks automated clients identified as risks by OWASP web application security standards
Threat Intelligence Update
Regular security signature updates sourced from FortiGuard Labs threat research
Web Application Protection
Identifies and prevents content scraping, vulnerability scanning, and automated client attacks
Configurable Response Mechanism
Supports logging, alerting, and blocking of detected malicious bot activities
Security Signature Framework
Utilizes web application firewall signatures based on comprehensive threat intelligence
Web Application Threat Protection
Comprehensive ruleset targeting OWASP Top 10 Web Application Threats with low false-positive rate
Vulnerability Mitigation
Managed rules addressing code injection techniques including SQLi, NoSQLi, OScommandi, XSS, and directory traversal
Technology-Specific Security
Protection against known exploits for web technologies like Apache Struts2, Apache Tomcat, Oracle WebLogic, WordPress, Drupal, and Joomla
Threat Intelligence Integration
Regularly updated rulesets incorporating latest cyber threat intelligence
Compliance Support
Security rules designed to help meet security standards such as PCI-DSS
Web Attack Protection
Comprehensive defense against OWASP Top 10 web vulnerabilities including SQLi, XSS, command injection, No-SQLi injection, path traversal, and predictable resource attacks
Threat Rule Management
Dynamically written, managed, and regularly updated security rules by F5 security specialists to address evolving cyber threats
Rule Application Mechanism
Seamless integration and attachment of security rules to AWS WAF instances for immediate enhanced protection
Vulnerability Coverage
Targeted mitigation of complex web application security risks across multiple attack vectors and exploitation techniques
Security Rule Monitoring
Continuous surveillance and proactive updating of ruleset to ensure ongoing defense against emerging web-based attack methodologies
Standard contract
No
No
No
Customer reviews
AnnoyedByTheScammers
Not worth it
Reviewed on Feb 09, 2018
Review from a verified AWS customer
The integration doesn't exist. It isn't automatic, other than payment. The data sheet is an advert for a hardware device! The usage instructions are non-existent for the SaaS. Complete garbage. I intentionally bought the least expensive as a method to test before buying all. This is basically a hustle.