Learn and Configure WAF for Application Layer DDoS Protection

Overview The StackPath WAF offers protection against Application Layer (Layer 7) DDoS. Layer 7 attacks are often performed in bursts and are not always volumetric in nature.  This protection is always active, even if the WAF is in Monitor mode.  T...
Read More »

Learn and Enable the WAF's Monitor Mode

Overview You can use this document to learn about the monitor mode, as well as enable the monitor mode on the StackPath WAF.  There are 3 WAF modes:  Protect Monitor Off You can use the monitor mode to temporarily test the WAF's behavior so that...
Read More »

Learn, Enable, and Troubleshoot WAF Bot Protection

Overview Hackers use bots to scan a web application's front end environment to exploit vulnerabilities for access and control.  The Stackpath Bot Shield detects, prevents, and blocks unauthorized vulnerability scans from reaching your application ...
Read More »

Add API Endpoints to the StackPath WAF

Overview  You can use this document to learn how to add API endpoints to the WAF.  To ensure a site is fully optimized with the StackPath WAF, you must ensure that the WAF correctly recognizes all API endpoints. Configured API endpoints ensures th...
Read More »

StackPath WAF JavaScript Injection Explained

StackPath WAF performs various tests to determine whether a valid user is behind each request (e.g. and not automated traffic). One of the requests is completed by a bit of JavaScript code that is injected into the response code from the origin se...
Read More »