AI-driven threat detection has reduced incidents and saved team hours weekly
What is our primary use case?
Check Point CloudGuard WAF's main use case is protecting web application APIs from external threats. It helps us block common attacks like SQL injections, cross-site scripting, and bot traffic, while also ensuring compliance with the security standards.
One unique aspect of our use case for Check Point CloudGuard WAF is how we leverage it to protect customer APIs that are critical to our business. Because we develop and host several in-house applications, we needed a solution that could adapt quickly to new endpoints and traffic patterns. Check Point CloudGuard WAF has been especially helpful here, automatically learning and adjusting protection without requiring constant manual tuning.
What is most valuable?
The best features Check Point CloudGuard WAF offers include AI-driven threat prevention, protection against OWASP Top 10, and zero-day attacks.
The zero-day attack protection in Check Point CloudGuard WAF has been very effective for us. Instead of waiting for signature updates or manual rule changes, the system uses AI to detect abnormal patterns and block suspicious traffic automatically.
Check Point CloudGuard WAF has positively impacted our organization by strengthening application security while reducing the workload in our team. The AI-driven protection against zero-day attacks and OWASP Top 10 vulnerabilities means threats are blocked automatically before patches are applied. This noticeably reduced the number of incidents we needed to investigate, freeing up time for more strategic projects.
Check Point CloudGuard WAF's ability to preemptively block zero-day attacks is one of its strongest advantages. Instead of relying on traditional signature updates, it uses AI and contextual analysis to spot abnormal traffic patterns and block them before they can exploit vulnerabilities. For example, during the Log4Shell disclosure, Check Point CloudGuard WAF was already blocking the suspicious payloads without us needing to manually adjust rules.
The breach reduction feature of Check Point CloudGuard WAF is one of the most impactful aspects of the solution. It proactively blocks suspicious traffic before it can exploit vulnerabilities, which has noticeably reduced the risk of breach in our environment.
What needs improvement?
Check Point CloudGuard WAF's support is only available in English. I gave Check Point CloudGuard WAF a rating of 9 out of 10 because the language limitation of support keeps it from being a perfect score, as I prefer support in different languages.
For how long have I used the solution?
I have been using Check Point CloudGuard WAF for around six years.
What do I think about the stability of the solution?
Check Point CloudGuard WAF is very stable.
What do I think about the scalability of the solution?
Check Point CloudGuard WAF's scalability is very good, and I have no issues with this.
How are customer service and support?
Check Point CloudGuard WAF's customer support is very great and very fast.
I would give Check Point CloudGuard WAF a rating of 10 for customer support.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
I previously used Azure WAF, but I decided to switch to Check Point CloudGuard WAF.
How was the initial setup?
The first deployment of Check Point CloudGuard WAF was initially difficult because the documentation is not intuitive, but it is no longer an issue.
What about the implementation team?
I do not utilize Check Point CloudGuard WAF alongside any other Check Point products. I prefer to use a centralized WAF or specialist WAF to assess the efficiency improvements provided by Check Point CloudGuard WAF compared to traditional WAFs.
What was our ROI?
I have saved a significant amount of time and resources since implementing Check Point CloudGuard WAF. Before, our teams often spent several hours manually tuning rules and chasing false positives. The detection has now cut the workload by more than half, freeing up three or four hours less per week.
Check Point CloudGuard WAF has reduced our total cost of ownership by approximately 10%. I consider the time saved as a return on investment since using Check Point CloudGuard WAF.
What's my experience with pricing, setup cost, and licensing?
The pricing, setup cost, and licensing for Check Point CloudGuard WAF are excellent, and I have no concerns with them.
Which other solutions did I evaluate?
I did not evaluate other options before choosing Check Point CloudGuard WAF.
What other advice do I have?
Check Point CloudGuard WAF is an excellent security tool, and my advice to others looking into using it is that it is complete and modern. Check Point CloudGuard WAF is an excellent solution for web applications, and you should consider it for future deployments. I would rate this product 9 out of 10.
Seamless Deployment and Robust Threat Protection with Minimal Maintenance
What do you like best about the product?
The combination of seamless deployment and strong, intelligent threat protection is the greatest upside. The Ease of Implementation was a significant win, allowing us to onboard critical applications with minimal downtime or configuration overhead. The managed intelligence behind the WAF dramatically reduces false positives while effectively stopping complex Layer 7 attacks, freeing up our team to focus on other priorities. Its low maintenance requirement and high-fidelity alerting are also major benefits.
What do you dislike about the product?
While the core WAF functionality is excellent, the reporting and dashboard visualization could be improved for enterprise-level visibility. It sometimes requires extra effort to correlate specific security events across a large fleet of applications outside of the primary console. Furthermore, the initial licensing model required a bit more negotiation to align perfectly with our specific scale-out architecture. However, the strong Customer Support helped us resolve these initial issues quickly.
What problems is the product solving and how is that benefiting you?
The primary problem solved is the comprehensive and proactive defense of critical web applications and APIs against the escalating threat landscape, particularly zero-day attacks and OWASP Top 10 vulnerabilities. This ensures regulatory compliance is consistently met without excessive manual oversight. The benefit is a significant reduction in operational risk and a dramatic increase in security team efficiency, as the intelligent, automated protection means we spend far less time on triage and fine-tuning rules, ultimately accelerating our application deployment timelines.
Seamless Cloud Integration and Effortless Deployment for DevOps
What do you like best about the product?
I liked that it integrates well with cloud environments and supports laC workflows and this makes the deployment smooth for the Devops team.It is very effective against common web attacks like SQL injection, XSS etc.
What do you dislike about the product?
The User Interface is powerful but it felt slightly overwhelming at first open. Some advanced and powerful options are bit hidden in the menus. Sometimes I felt UI lag issues.
What problems is the product solving and how is that benefiting you?
Cloudguard WAF helped us to tackle two major issues , securing our API's and protecting out web app from modern attacks pattern. During our trial we were able to quickly setup protections against SQL injection and DDOs attack. It gave us better visibility into the suspicious requests and helped us to understand where our product was vulnerable. We used the trial to evaluate whether we could adopt it long term and the experience was vey positive.
Reliable Cloud WAF with Strong Automation
What do you like best about the product?
What I like most about Check Point CloudGuard WAF is how reliably it blocks common web attacks without needing constant manual tuning. The dashboard is clean, and the threat visibility makes it easy to understand what is happening in real time. Its automated protections and strong integration with cloud environments help maintain security with less operational effort.
What do you dislike about the product?
The initial setup can feel a bit complex, especially for teams that are not already familiar with Check Point’s ecosystem. Some of the advanced configuration options could be more intuitive, and certain logs take time to get used to. Aside from that, the product performs well but could improve in terms of onboarding and documentation clarity.
What problems is the product solving and how is that benefiting you?
Check Point CloudGuard WAF helps us protect our applications from common web attacks like SQL injection, bot traffic, and malicious API calls. It reduces manual monitoring by automatically blocking suspicious behavior. This has improved our overall security posture and saved time for our team by minimizing false positives and providing clearer visibility into threats.
Has blocked web-based threats and reduced attack success using real-time detection and intelligence
What is our primary use case?
My main use case for Check Point CloudGuard WAF is protecting the public-facing web applications in my company because I need to show different webs to different clients, and I need to protect these web apps.
In addition to protecting public-facing web apps and APIs, I also use Check Point CloudGuard WAF for different purposes, such as providing protection to non-production environments, ensuring that vulnerabilities are caught early during deployment and testing, which helps identify misconfiguration or insecure code before it reaches production.
How has it helped my organization?
Check Point CloudGuard WAF has positively impacted my organization by significantly improving both security and operational efficiency, with a noticeable reduction in web-based threats, especially automated attacks and vulnerability exploits, thanks to its real-time prevention and reputation filter that has streamlined my workflow through automatic policy updates and integration smoothly with my CI/CD pipelines, allowing my DevOps teams to deploy security without delays.
AI-based threat detection and contextual machine learning to block known and zero-day attacks, according to Check Point, have led to a notable decrease in successful web-based attacks.
What is most valuable?
The best features that Check Point CloudGuard WAF offers in my experience include advanced threat detection with blocking OWASP Top 10 threats such as SQL injection, XSS, and CSRF with high accuracy, along with granular access controls such as geo-blocking and IP reputation filter.
The reputation filter has helped me significantly. For example, I was once notified of a spike in traffic targeting one of my login portals, which at first glance looked like normal user activity, but the reputation filter flagged the source IPs as part of a known botnet associated with credential stuffing attacks, leading to those IPs being blocked before they could even reach the authentication layer.
What needs improvement?
Check Point CloudGuard WAF is a strong solution, but there are a few areas where it could be improved, particularly the user interface for managing custom rules and exceptions, which could be more intuitive and streamlined to reduce the learning curve for new users, especially when deploying for the first time.
I think the documentation could be better. People need more intuitive documentation and easier steps for the first deployment.
For how long have I used the solution?
I have been using Check Point CloudGuard WAF for around three years.
What do I think about the stability of the solution?
Check Point CloudGuard WAF is stable in my experience with no downtime or reliability issues.
What do I think about the scalability of the solution?
Check Point CloudGuard WAF is very scalable and has handled growth or increased traffic well.
How are customer service and support?
The customer support for Check Point CloudGuard WAF is great. I have had great response time, and it has been very helpful for me.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
I did not previously use a different solution.
How was the initial setup?
The experience with pricing, setup cost, and licensing for Check Point CloudGuard WAF is straightforward, with the service being available as a fully managed service, and the pricing depending on traffic volume, number of protected applications, and cloud provider. I do not have a problem with this area.
What was our ROI?
I have seen a return on investment, having more time in the department, which is the relevant metric of time saved.
What's my experience with pricing, setup cost, and licensing?
The experience with pricing, setup cost, and licensing for Check Point CloudGuard WAF is straightforward, with the service being available as a fully managed service, and the pricing depending on traffic volume, number of protected applications, and cloud provider. I do not have a problem with this area.
Which other solutions did I evaluate?
Before choosing Check Point CloudGuard WAF, I compared it with Azure WAF, but I had to select Check Point CloudGuard WAF.
I compare Check Point CloudGuard WAF with Azure WAF, noting that I need to centralize the security products, preferring different tools in Check Point Infinity Portal since they are from the same company.
What other advice do I have?
If you are considering using Check Point CloudGuard WAF, my top advice is to take full advantage of its automatic learning and threat intelligence features right from the start. Begin with the detect learning mode to observe traffic patterns and fine-tune policies before switching to full prevention, which helps reduce false positives and ensure a smoother deployment.
I do not utilize Check Point CloudGuard WAF alongside any other Check Point products.
Check Point CloudGuard WAF helps me block specific web-based attacks such as SQL injections or cross-site scripting with threat prevention.
Check Point CloudGuard WAF has helped me reduce my false positive rate to approximately fourteen percent, thanks to its adaptive threat prevention and machine learning capabilities.
The breach reduction capabilities of Check Point CloudGuard WAF are impressive, especially in how it proactively blocks zero-day threats and bot-driven attacks before they reach critical systems. For example, it stopped a credential stuffing attempt on my login portal using the reputation filter and input validation. I would rate this review a nine.
AI-powered WAF that reduces manual tuning BUT comes at a premium
What do you like best about the product?
I evaluated Check Point CloudGuard WAF as part of a proposal to protect a cloud-hosted web and API stack. The deployment process was remarkably fast — it took only a few minutes to get up and running — and the integration with our existing CI/CD pipeline was smooth and straightforward. It provided comprehensive visibility into API traffic and strong protection against common web threats without requiring extensive manual tuning.
What do you dislike about the product?
The solution is slightly more expensive compared to some of its competitors, such as Cloudflare WAF and Imperva WAF. However, the additional cost is partly justified by its advanced AI-driven threat detection, API discovery capabilities, and the overall reliability of Check Point’s cloud-native infrastructure.
What problems is the product solving and how is that benefiting you?
For us, the biggest benefit has been the ease of deployment and ongoing management — it integrates seamlessly with CI/CD workflows, scales automatically with cloud workloads, and provides clear visibility into traffic patterns and attack trends. Overall, it has simplified application security operations and improved confidence in protecting our cloud environment.
Exceptional Threat Protection and Seamless Cloud Integration
What do you like best about the product?
Users consistently praise its ability to identify and block sophisticated threats targeting web applications and APIs using machine learning and behavioral analysis. CloudGuard WAF secures APIs with deep inspection and policy enforcement, which is crucial for modern cloud-native applications. CloudGuard WAF is built for cloud/DevOps environments: quick deployment, infrastructure as code, SaaS-style or managed mode.Easy to implement
What do you dislike about the product?
No dislike as of now. we liked the solution.
What problems is the product solving and how is that benefiting you?
Stronger Application Security Reduces the risk of data breaches and service disruptions by proactively blocking threats.Simplified Management Centralized dashboard and automated policy updates make it easy to monitor and respond to threats.Because it supports cloud native and SaaS modes, you can deploy quickly and scale as your web infrastructure grows or shifts. That supports agile/DevOps workflows.Since the WAF is more intelligent (fewer false blocks) and supports modern web architectures (APIs, microservices), legitimate users have fewer disruptions and the business can deliver services reliably.
Comprehensive Protection and Easy Setup with Excellent Support
What do you like best about the product?
What I like best about Check Point CloudGuard WAF is its comprehensive, proactive protection for web applications against modern threats.Another standout feature is its integration with Check Point Threat Cloud, which provides continuous updates on emerging threats, enabling proactive defense and reducing the window of vulnerability.Offers detailed reports and dashboards for compliance and operational insights.Easy to implement. Nice customer support.
What do you dislike about the product?
Initial Learning Curve is the only challenge. Product is so great.
What problems is the product solving and how is that benefiting you?
Traditional WAFs often require manual tuning to avoid blocking legitimate traffic. CloudGuard’s AI-driven detection minimizes false positives, reducing the need for constant rule adjustment.With advanced analytics and continuous monitoring, it enables proactive threat detection and response, giving security teams better visibility into application-layer attacks.The capability to deploy quickly means you can secure new applications faster, keep pace with DevOps, and not delay releases for security gating.
Adaptive Protection and Unified Console Make CloudGuard Stand Out
What do you like best about the product?
Unlike traditional WAFs that focus mainly on OWASP Top 10, CloudGuard uses Check Point’s ThreatCloud intelligence to detect. CloudGuard WAF uses machine learning and behavioral analysis to adaptively tune protection, reducing false positives.You can manage the WAF alongside your cloud network security, API protection, and runtime posture through a single CloudGuard console. Support is as always so great.
What do you dislike about the product?
Documentation and self-help resources are seen as lacking in some areas — users say they sometimes need more detailed examples or stronger guidance
What problems is the product solving and how is that benefiting you?
CloudGuard does automated discovery of API endpoints, applies contextual AI to traffic, and doesn’t rely purely on static signatures. CloudGuard uses ML / behavioural analysis to detect anomalous traffic or patterns even if no signature exists. CloudGuard supports deployment across cloud providers, hybrid models, and integrates with cloud-native services. CloudGuard provides centralised console, logging, visibility across cloud apps, and integrates with threat-intel.
Check Point CloudGuard WAF
What do you like best about the product?
Checkpoint CloudGuard WAF is a great solution. It uses contextual AI/ML based threat prevention to stop both known threats and zero-day attacks without need for constant signature updates. From a deployment and operation viewpoint, CloudGuard WAF shines, it is cloud-native, Supports infrastructure as a code/API-based setup. Customer support is so great. We have achieved all our use cases.
What do you dislike about the product?
No dislike as of now. We liked that product.
What problems is the product solving and how is that benefiting you?
CloudGuard WAF addresses the challenges posted by traditional WAFs that rely heavily on static signatures, manual rule tuning and reactive defences. It also improves detection accuracy while dramatically reducing false positives, so your security operation teams spend much time investigating benign traffic and more time responding to real threats. Additional features like built in bot detection, DDos mitigation, and file upload scanning further close off common attack vectors.
