Web Application Firewall

Web Application Firewall is an application layer firewall, which helps protect websites/web application from OWASP vulnerabilities(such as sql injection, XSS, DDOS etc) by inspecting their incoming and outgoing HTTP traffic and blocking the malicious one.

Project Title

Web Application Firewall

Project Area of Specialization

Cyber Security

Project Summary

Web Application Firewall is an application layer firewall, which helps protect websites/web application from OWASP vulnerabilities(such as sql injection, XSS, DDOS etc) by inspecting their incoming and outgoing HTTP traffic and blocking the malicious one.

Project Objectives

1)our objective is to provide a safe web experience for everyone .

2)our first priority is to give protection to Pakistani firms/companies(whether govt. or non govt.) from cyber attacks.

3) To block every malicious request right on  application layer without affecting the normal working of the website/webapplication

Project Implementation Method

Our project is to be implemented by using dockers containers to deploy "Modsecurity Rules" to provide protection against OWASP vulnerabilities, and then provide this service of WAF to customers through an online website.

Benefits of the Project

Anyone will be able to make their web properties(webapplications, websites) safe and secure just by subscribing to our WAF services.

WAF will protect websites/web applications from cyber attacks.

Both private and government organizations can take these services.

Technical Details of Final Deliverable

We will be using Docker Containers (a computer program that performs operating-system-level virtualization) to deploy Modsecurity rules( ModSecurity Core Rule Set (CRS) is a set of generic attack detection rules ) against which we'll examine the HTTP traffic, if the traffic will pass the standards of these rules then it will be allowed to pass otherwise the traffic will get blocked.THese rules are a standard to detect whether the HTTP traffic is malicious or not.

Else we will also create our own rules to detect malicious traffic.(e.g for DDOS attack detection)

This will provide protection against OWASP vulnerabilities(such as SQL injection , XSS etc).

WE will provide these WAF services through an onine website to make it easily available to everyone.

Final Deliverable of the Project

Software System

Type of Industry

Security

Technologies

Others

Sustainable Development Goals

Industry, Innovation and Infrastructure

Required Resources

If you need this project, please contact me on contact@adikhanofficial.com