WEB APPLICATION FIREWALL
Incapsula cloud-based web application firewall (WAF) is a managed service that protects from application layer attacks, including all OWASP top 10 and even zero-day threats.
Our service is PCI-certified, highly customizable, SIEM ready and fine-tuned for blocking threats with minimal false positives.GET QUOTE
How it works
Incapsula CDN is a gateway for all incoming traffic to your web application. This puts it in a perfect positon to filter out malicious visitors and requests like SQL injections and XSS attacks among others.
Threats are identified by several layers of security policies, maintained and updated by a dedicated security team. Threat discovery is aided by Incapsula crowdsourcing, which uses current attack information from our network to immediately safeguard our entire customer community.
All of our security solutions are provided as managed services and can be rapidly deployed without any hardware or software changes.
PCI-DSS compliance is an essential requirement for any service that processes credit card data. Incapsula WAF is PCI certified, addressing the PCI DSS 6.6 clause, and comes complete with PCI reporting.
PROTECTION FROM ALL THREATS
Incapsula protects from all application security threats, including SQL injection, cross-site scripting (XSS) and remote file inclusion (RFI), and more.
DEVELOP CUSTOM RULES
IncapRules is a flexible scripting language that allows detailed customization of WAF security policies with instant propagation. A simple-to-use GUI lets you configure rules according to your specific security needs based on signals, such as IP reputation, URL slug, client type, number of requests and geo-data.
MINIMAL CUSTOMER FRICTION
Other threat mitigation solutions can lead to service disturbances for legitimate users, like the use of CAPTCHA prompts. Incapsula lets you operate in blocking mode while virtually eliminating false positives.
Every application has its own logic and there is no one size fits all security solution. With Incapsula you have the option to override every default security rule with your own whitelisting policies.
A new security patch signals the start of a race between hackers swarming to exploit a newly announced vulnerability and IT teams rushing to close the gap. Incapsula offers you a better option. We auto-apply the patch on the edge, allowing you to update your applications on your schedule instead of patching under fire.
The effective management of WAF policies can be a full time job. Incapsula takes the responsibility off your hands and places it with our dedicated team of security experts.