Advanced API Protection

Overview API Security is the prevention of unwanted or abusive usage of an API. StackPath's WAF offers WAAP capabilities that allow you to protect both your web applications and APIs simultaneously. Our WAF possesses pre-defined API Protection pol...
Read More »

General Policies

Overview A browser is able to load a website using a set of rules called protocols. The General Policies found in your WAF settings focus on the HyperText Transfer Protocol (HTTP) and HyperText Transfer Protocol Secure (HTTPS). These protocols are...
Read More »

Core WAF & OWASP Top Threats

Overview StackPath provides a robust core rule set to protect your site from malicious attacks. In addition, StackPath follows the Open Web Application Security Project's (OWASP) list of recommended critical web-application security risks. OWASP i...
Read More »

IP Reputation

Overview StackPath allows you to blacklist traffic that originates from well-known malicious IP addresses. StackPath's Central Security Cloud constantly collects, updates, and validates these IP addresses using multiple sources. These IP addresses...
Read More »

Anti-Automation & Bot Protection

Overview Cyber-criminals use automation to carry out attacks on web applications for several reasons. Automation tools: Enable the attacker to hit more applications and exploit more vulnerabilities than other manual methods. Are available online ...
Read More »

Behavioral WAF (Advanced Threat Detection)

StackPath has sophisticated user behavior and reputation analysis rules to prevent malicious attacks on a customers site. The following is a list of the automated advanced threat detection capabilities that are available to you.   Name Definiti...
Read More »

CMS Protection

Overview Many common Content Management Systems (CMS) relay information with your website that can appear malicious through its automated nature. StackPath can identify CMS admin user traffic to prevent blocking needed traffic. Additionally, Stack...
Read More »