BlackHat sneak preview: A WAF is not enough

By /

BlackHat USA is coming up soon, and one of the presenters will be Ivan Ristic with Qualys, who will be discussing his research that shows how organizations that rely on Web Application Firewalls (WAFs) may be operating with a false sense of security. The presentation will demonstrate 150 ways savvy attackers can bypass the WAF’s defenses to exploit vulnerabilities in a web server. Ristic should know, since he has been developing WAFs for over ten years.

If you’ll be at BlackHat in Las Vegas at the end of the month, be sure and catch his talk. If not, check out this article over at darkreading.com:

http://www.darkreading.com/advanced-threats/167901091/security/security-management/240003882/will-advanced-attackers-laugh-at-your-waf.html

About The Author

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.

Read Next

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top