Free Trial

Injection Prevention

What is Prophaze WAF?

How Prophaze WAF Works

System Requirements

Performance

SSL Termination

Modes Of Operation

Prophaze WAF Best Practices

WAF ONBOARDING

Prophaze WAF Registration

WAF Deployment Models

Cloud

On-Premise

Kube-native

THREAT ANALYSIS

Dashboard

Traffic Analysis

Bot Analysis

Attack Analytics

Rules Page

Attack Types

Incidents

Reporting

HTTP SUPPORT

Encoding Types

Protocol Validation

PROTECTION USE CASES

HTTP Protocol Violation

Protocol Anomalies

Bot Detection

Injection Prevention

HTTP Request Smuggling

HTTP Response Splitting

XSS Prevention

LFI And RFI

Session Fixation

SQL Injection Prevention

Layer 7 Dos Attack Prevention

PHP Application Protection

DETECTION TECHNIQUES

Normalization

Negative Security Model

Signature And Rule Database

Prophaze WAF can prevent the following Injection attacks.

OS Command Injection - Exploiting arbitrary commands in the operating system to fingerprint Infrastructure details, and to establish a trust between host operating Systems. This happens when application passes unsafe data which Includes Forms, Cookies, URL Arguments etc

Coldfusion Injection – Prevents database injection in Coldfusion apps

LDAP Injection - Stops exploits which attacks LDAP Protocol

SSI Injection – Prevents attacks which manipulates server side Includes to execute remote code injections

UPDF/XSS Injection – Prevents XSS attacks on applications with pdf Files

Email Injection – Prevents Email Injection where attacker utilizes Carriage return to inject extra email headers to the contact form

Blocks system command access

Blocks Directory Traversal attacks

Preview

Bot Detection

Next

HTTP Request Smuggling