Forum Discussion

Nimbostratus

Nov 19, 2014

Bruteforce mitigation on JSON parameters

Hi All, I would like to know the possibilities to protect a webserver,against bruteforce attacks, who uses JSON parameters. In the ASM, the default option is, to protect a loginpage. The webapp...

Employee

Nov 24, 2014

Hi Erwin, you should be able to configure protection against multiple requests from a single source by configuring a login page and then defining thresholds for it. I don't think you need to worry about JSON parameter complications for this. In ASM, go to Application Security>Anomaly Detection>Brute Force Attack Prevention, and then create a page that you want to protect. You can specify exactly how many attempts from the same client will be allowed.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Bruteforce mitigation on JSON parameters

Recent Discussions

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Background Tasks

SSL bridging without SSL proxy forward

Related Content

CitrixBleed Mitigation CVE-2023-4966

F5 Distributed Cloud L3-L7 DDoS Mitigation

Mitigating OWASP API Security risks using BIG-IP

JA4 Part 2: Detecting and Mitigating Based on Dynamic JA4 Reputation

F5 Distributed Cloud - Mitigation for Cross Tenant Origin Exposure (CTOE)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS