Web Application Firewall
Web Application Firewall is an application layer firewall, which helps protect websites/web application from OWASP vulnerabilities(such as sql injection, XSS, DDOS etc) by inspecting their incoming and outgoing HTTP traffic and blocking the malicious one.
2025-06-28 16:36:45 - Adil Khan
Web Application Firewall
Project Area of Specialization Cyber SecurityProject SummaryWeb Application Firewall is an application layer firewall, which helps protect websites/web application from OWASP vulnerabilities(such as sql injection, XSS, DDOS etc) by inspecting their incoming and outgoing HTTP traffic and blocking the malicious one.
Project Objectives1)our objective is to provide a safe web experience for everyone .
2)our first priority is to give protection to Pakistani firms/companies(whether govt. or non govt.) from cyber attacks.
3) To block every malicious request right onĀ application layer without affecting the normal working of the website/webapplication
Project Implementation MethodOur project is to be implemented by using dockers containers to deploy "Modsecurity Rules" to provide protection against OWASP vulnerabilities, and then provide this service of WAF to customers through an online website.
Benefits of the ProjectAnyone will be able to make their web properties(webapplications, websites) safe and secure just by subscribing to our WAF services.
WAF will protect websites/web applications from cyber attacks.
Both private and government organizations can take these services.
Technical Details of Final DeliverableWe will be using Docker Containers (a computer program that performs operating-system-level virtualization) to deploy Modsecurity rules( ModSecurity Core Rule Set (CRS) is a set of generic attack detection rules ) against which we'll examine the HTTP traffic, if the traffic will pass the standards of these rules then it will be allowed to pass otherwise the traffic will get blocked.THese rules are a standard to detect whether the HTTP traffic is malicious or not.
Else we will also create our own rules to detect malicious traffic.(e.g for DDOS attack detection)
This will provide protection against OWASP vulnerabilities(such as SQL injection , XSS etc).
WE will provide these WAF services through an onine website to make it easily available to everyone.
Final Deliverable of the Project Software SystemType of Industry Security Technologies OthersSustainable Development Goals Industry, Innovation and InfrastructureRequired Resources| Item Name | Type | No. of Units | Per Unit Cost (in Rs) | Total (in Rs) |
|---|---|---|---|---|
| Total in (Rs) | 7600 | |||
| Web Hosting | Equipment | 1 | 4000 | 4000 |
| Printing, stationery | Miscellaneous | 4 | 400 | 1600 |
| Overheads | Miscellaneous | 4 | 500 | 2000 |