Skip to main content

Web Application Firewall (WAF)

Our distributed cloud based WAF solution protects web applications and APIs against sophisticated attacks and common vulnerabilities including the OWASP, such as;


  • SQL Injection

  • Cross-Site Scripting (XSS)

  • Local File Inclusion

  • Remote File Inclusion

  • PHP Code Injection

  • Java Code Injection

  • Shellshock

  • Unix/Windows Shell Injection and more.

Medianova WAF: Web App and API Rule Management

  • Managed rulesets incl. OWASP core ruleset: You can leverage pre-configured rulesets, including the widely recognized OWASP Core Ruleset, to fortify your web applications and APIs against common security threats.

  • Customizable rules: You can tailor security rules to suit your specific application needs, allowing you to address unique requirements and potential threats effectively.

  • Rich Analytics: You can monitor and analyze traffic patterns, detect security events, and assess the effectiveness of your security rules. The rich analytics capabilities empower you with actionable intelligence, ensuring a proactive and vigilant approach to web application security.

  • Continuous update of rulesets and access to the most recent threat intelligence: Your security measures stay current with automatic updates to rulesets, providing real-time protection against evolving threats through access to the latest threat intelligence.

  • IP blacklisting and whitelisting: You have granular control over network access by blacklisting or whitelisting specific IP addresses, adding an extra layer of defense against unauthorized or potentially malicious entities.

  • Geo-blocking: You can prevent access from specific geographic regions, and reducing the risk of targeted attacks from particular locations by implementing Geo-blocking.

  • HTTP security headers: You can deploy HTTP security headers, enhancing protection against various web-based vulnerabilities.

You can find instructions for activating your Medianova WAF here.

Distributed Cloud Based WAF vs Appliance


Distributed Coverage and Capacity: A distributed server network spanning multiple locations offers greater capacity and stronger defense against threats. Appliance-based solutions, on the other hand, are constrained to a few data centers, and therefore may face saturation risks, potentially allowing attacks to evade defenses.

Cost-Efficiency: Cloud based WAF eliminates upfront hardware and installation costs. Appliance based solutions have significant upfront hardware and ongoing operational expenses.

Instant Activation: Cloud based WAF can be swiftly activated, without the need for physical installations or complex configurations. Appliances necessitate a longer setup time due to lengthy procurement, physical installations, and complex configurations.

Real-time Updates: Cloud based WAF can receive automatic, real-time threat intelligence updates, ensuring continuous protection against the latest threats. Appliance based solutions usually require manual updates.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.