Forum Discussion

Erwin_25552's avatar
Erwin_25552
Icon for Nimbostratus rankNimbostratus
Nov 19, 2014

Bruteforce mitigation on JSON parameters

Hi All,   I would like to know the possibilities to protect a webserver,against bruteforce attacks, who uses JSON parameters. In the ASM, the default option is, to protect a loginpage. The webapp...
ASM Advanced WAF
deployment
design
JSON
security
Marc_LeBeau's avatar
Marc_LeBeau
Icon for Nimbostratus rankNimbostratus
Mar 24, 2015

Have you looked at Project BAIU? F5 is considering hard baking this into the product still. It was designed for brute forcing and is proven to be incredibly accurate and effective plus you can configure just how basic or advanced you want it. The user ID extraction iRule focuses on forms and normal parameters to extract user IDs. If you want it to do JSON, then change one of the string maps "string map \x2D\x2D\x2D\x2D\x2D \x26" to "string map \x22\x3A\x22 \x26 and then you'll be parsing out JSON data and rate limiting it i.e. preventing brute forcing and heavy hitters. marclebeauaz@yahoo.com if you need more info about this suite of iRules.

 

Project BAIU on DevCentral

 

Project BAIU Home Page including the 5 million IP/network blacklist