Brute force detection- JSON Parameters

Question

Hi All,&nbsp;
I would like to know the possibilities to protect an website,against brute force attempts, the site uses JSON parameters. we are using ASM version: 11.6) ,i know v-12  got json authentication in login page creation which will help us out.But the version upgrade is still under consideration.. any suggestions on this brute force mitigation for JSON in 11.6 v? thanks&nbsp;

tikka_nagi_1315 · Answer

It appears that there two options. Ideally, upgrade to 12.x and use the JSON brute force mitigation. On 11.x, you would have to either build a custom iRule to handle this. A quick search on devcentral shows:&nbsp;
https://devcentral.f5.com/codeshare/protecting-login-pages-against-brute-force-attack-v1&nbsp;
You could use this as starting point. If you are unable to customize this please check https://f5.com/support/professional-services/consulting-services/irules-ondemand&nbsp;
Alternatively, you could try to detect the brute force login attempts using DOS by limiting the number of Requests from a given source ip.&nbsp;

Forum Discussion

Brute force detection- JSON Parameters

Recent Discussions

XC Bot defense question

LTM Rule, iRule, or Brute Force Configuration to Limit URL Access

NetScaler to F5 Migration

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Related Content

Brute Force protection for single parameter like OTP

F5 Distributed Cloud JA4 detection for enhanced performance and detection

Phishing, Malware and Spyware Campaign, BRUTED Tool & CISA’s List Of Exploited Vulnerabilities

SSL Orchestrator Advanced Use Cases: Detecting Generative AI

JA4 Part 2: Detecting and Mitigating Based on Dynamic JA4 Reputation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS