Free Trial

XSS Prevention

What is Prophaze WAF?

How Prophaze WAF Works

System Requirements

Performance

SSL Termination

Modes Of Operation

Prophaze WAF Best Practices

WAF ONBOARDING

Prophaze WAF Registration

WAF Deployment Models

Cloud

On-Premise

Kube-native

THREAT ANALYSIS

Dashboard

Traffic Analysis

Bot Analysis

Attack Analytics

Rules Page

Attack Types

Incidents

Reporting

HTTP SUPPORT

Encoding Types

Protocol Validation

PROTECTION USE CASES

HTTP Protocol Violation

Protocol Anomalies

Bot Detection

Injection Prevention

HTTP Request Smuggling

HTTP Response Splitting

XSS Prevention

LFI And RFI

Session Fixation

SQL Injection Prevention

Layer 7 Dos Attack Prevention

PHP Application Protection

DETECTION TECHNIQUES

Normalization

Negative Security Model

Signature And Rule Database

Prophaze WAF can prevent advanced XSS attacks in the following ways.

Blocks injection of client side scripts into browsers by attackers which allows them to steal session and cookie data

Uses Open source lib injection library along with regular expressions

HTML tag finder

Style/Script Tag prevention

JS Fragment prevention (URI)

CSS Fragment Prevention

Blocks XSS fingerprints

Event Handler Block

Attribute Vector Prevention

Noscript html injection

IE filters

Malformed XSS Filter

UTF-7 encoding XSS Prevention (IE)

Disallowed HTML attributes

Preview

HTTP Response Splitting

Next

LFI and RFI