It is a solution that offers an integrated, multi-layered security model, providing protection for applications and APIs against any known or unknown threats, thanks to the following components:
- Web Application Firewall (WAF): Offered as a SaaS, physical, or virtual appliance, this solution provides immediate protection against the OWASP Top 10 threats, such as SQL Injection, Cross-Site Scripting, among others.
- API Security: Through a security model based on vulnerability detection, this feature provides continuous protection for all APIs, starting with discovery and classification to identify both public and private APIs. This enables full visibility into data exposure and ensures protection against logic-based attacks and those related to the OWASP API Top 10.
- Advanced Bot Protection: Using a Machine Learning (ML) engine, this solution protects against silent and automated attacks. It can distinguish between traffic from malicious bots and real human users, blocking malicious bot traffic before it reaches your website.
- DDoS Protection: Aimed at protecting web applications, internet-connected services, and DNS servers from volumetric attacks (targeting Layers 3, 4, and 7), ensuring business continuity.
DDoS Protection is a fully cloud-delivered service, supported by a global network of over 60 PoPs, which also serve as scrubbing centers for mitigating DDoS attacks.
- Client Side Protection (CSP): Provides visibility into all third-party services running on your website, enabling continuous monitoring to mitigate and block attacks related to compromised user accounts, and issuing alerts for new or unknown services.
- Account Takeover (ATO): This module protects user credentials by analyzing behavior to detect compromised accounts, helping to prevent unauthorized access through the use of stolen or invalid passwords.
- Content Delivery Network (CDN): Through intelligent caching, this feature speeds up website load times and reduces bandwidth usage, enhancing overall application performance.
- Runtime Application Self-Protection (RASP): Based on a lightweight agent (plug-in) integrated during the software/application development cycle, this solution provides built-in protection while the application is in production. It enables self-protection using ultra-fast attack detection methods (LANGSEC), securing applications regardless of their existing vulnerabilities.